News

European data protection authorities launch coordinated review of the position and tasks of data protection officers

21.03.2023

The European data protection authorities recently launched a coordinated review of the position and tasks of data protection officers, which is being coordinated by the European Data Protection Board (EDPB).The German data protection authorities are also taking part in the joint Europe-wide review.

The data protection authorities are particularly interested in using the review to gauge whether data protection officers have the position required by the General Data Protection Regulation (GDPR) and the resources needed to carry out their tasks.

Data protection officers will first be sent questionnaires for this purpose. The answers will be used to identify whether additional formal investigations by the authorities are warranted. The European data protection authorities intend to jointly decide on possible further national supervision and enforcement actions. Violations of the legal requirements set out in the GDPR may lead to significant regulatory fines.

We recommend that companies carefully review the position and tasks of their data protection officer, especially in light of the announced review by the authorities, and that any organisational improvements necessary be initiated quickly.

The role that the GDPR provides for data protection officers is one of the central pillars of robust data protection governance in a company. A data protection officer not only has the task of advising on data protection issues, but above all also has an independent control function. In practice, the challenge lies in designing structures and organisational processes for data protection in a company to, on the one hand, ensure that data protection officers are involved in an effective and at the same time efficient manner, but, on the other hand, to also avoiding potential conflicts of interest on the part of data protection officers. It is therefore obvious that, in their review, the supervisory authorities will also pay particular attention to any interference experienced by data protection officers in performing their tasks independently and effectively.

Contact

Daniel Rücker
Daniel Rücker+49 89 28628457
Sebastian Dienst
Sebastian Dienst+49 89 28628457

Data Privacy

Share

Show all

Insights

hand touching led wall screen
News

Data Compliance Governance

16.04.2024
compass with pulse
News

Data Act – Scope, Impact, Implementation

16.04.2024
LED field Data Protection Litigation
News

Update on the Data Governance Act

12.03.2024
street view with pulse
News

European data protection authorities start coordinated investigation into right of access

11.03.2024
library
News

Judgment of the Cologne Administrative Court of 17 November 2023 – BNetzA Acted Unlawfully by Naming Company in Press Release

01.03.2024
compass with pulse
News

Data privacy pitfall: Cookie banners must allow a genuine choice

26.02.2024
coloured purple and yellow led screen
News

European Data Law

02.02.2024
Künstliche Intelligenz
News

Final text of the European AI Act – What companies and public institutions that want to use AI systems need to be prepared for

25.01.2024
hand touching led wall screen
News

Digital Markets Act

17.01.2024