I provvedimenti spiegati alle aziende
con guide, checklist, modelli; AI assisted
Osservatorio a cura del dott. V. Spataro 



   documento 2023-04-28 ·  NEW:   Appunta · Stampa · Cita: 'Doc 96744' · pdf

Does my company/organisation need to have a Data Protection Officer (DPO)?

abstract:



Documento annotato il 28.04.2023 Fonte: GPDP
Link: https://commission.europa.eu/law/law-topic/data-pr




analisi:

L'analisi è riservata agli iscritti. Segui la newsletter dell'Osservatorio oppure il Podcast iscrizione gratuita 30 giorni




index:

Indice

  • Large scale, regular and systematic moni
  • DPO mandatory
  • DPO not mandatory



testo:

E

estimated reading time: 1 min

Answer

Your company/organisation needs to appoint a DPO, whether it's a controller or a processor, if its core activities involve processing of sensitive data on a large scale or involve large scale, regular and systematic monitoring of individuals. In that respect, monitoring the behaviour of individuals includes all forms of tracking and profiling on the internet, including for the purposes of behavioural advertising.

Public administrations always have an obligation to appoint a dpo (except for courts acting in their judicial capacity).

The dpo may be a staff member of your organisation or may be contracted externally on the basis of a service contact. A dpo can be an individual or an organisation.

Examples

DPO mandatoryA dpo is mandatory for example when your company/organisation is:

  • a hospital processing large sets of sensitive data;
  • a security company responsible for monitoring shopping centres and public spaces;
  • a small head-hunting company that profiles individuals.

DPO not mandatoryA dpo isn’t mandatory if:

  • you’re a local community doctor and you process personal data of your patients
  • you have a small law firm and you process personal data of your clients

References


Link: https://commission.europa.eu/law/law-topic/data-pr

Testo del 2023-04-28 Fonte: GPDP




Commenta



i commenti sono anonimi e inviati via mail e cancellati dopo aver migliorato la voce alla quale si riferiscono: non sono archiviati; comunque non lasciare dati particolari. Si applica la privacy policy.


Ricevi gli aggiornamenti su Does my company/organisation need to have a Data Protection Officer (DPO)? e gli altri post del sito:

Email: (gratis Info privacy)






Nota: il dizionario è aggiornato frequentemente con correzioni e giurisprudenza