Outsourcing the Data Protection Officer
We act as the Data Protection Officer (DPO)
In carrying out its duties, the DPO cooperates with the client’s representative by ensuring that the supervision function is carried out correctly in the legal, organisational and technical areas, in particular by performing the following tasks:
- informing the Controller, the Processor and employees who process personal data about the obligations arising from the provisions of the GDPR and the Personal Data Protection Act,
- monitoring compliance with the General Data Protection Regulation, the Personal Data Protection Act and the Controller’s policies in the field of personal data protection,
- monitoring the division of responsibilities, awareness-raising activities,
- monitoring audits carried out in the field of compliance with personal data protection regulations,
- providing recommendations on the data protection impact assessment on request and monitoring its implementation in accordance with Article 35 of the GDPR,
- cooperation with the supervisory authority;
- acting as a contact point for the supervisory authority in matters related to processing, including prior consultations referred to in Article 36 of the GDPR,
- reviewing the status of physical security,
- reviewing the status of IT security,
- reviewing the status of implementation of security procedures,
- analysing notifications of entitlements under the GDPR, both from employees and contractors and customers, including indicating the need for specific actions to be taken,
- conducting training of personnel participating in personal data processing operations,
- drawing up and presenting a summary of the security situation to management,
- supervising the authorisations to process personal data,
- performing regular security audits.