Prerequisites and tasks for data protection officers

As per Art. 37 Para. 5 GDPR, data protection appointees must possess the specialized knowledge and reliability needed to fulfill the associated tasks. In particular, the scope of required specialized knowledge is based on the scope of data processing in the responsible office, and on the data protection needs for personal data that the responsible office collects or uses.

Courts and the applicable literature establish the following attributes, among others, for these requirements:

  • strong legal expertise
  • well-developed IT skills
  • didactic skills and empathy
  • organizational skills
  • commitment to continuous further development
  • confidentiality obligation
  • independent data protection officer

The data protection officer’s job is to ensure compliance with the GDPR and other data protection regulations (cf. Art. 39 Para. 1 lit. b GDPR). The Act specifies monitoring, controlling and training tasks as examples.

Because of our many years of expertise as external data protection officers, we are able to fulfill these varied requirements and tasks with better than average standards. Please contact us for further details – we will gladly provide you with a customized offer for your specific needs.