The GDPR is all about protecting individuals (aka the “Data Subjects”) by giving them greater rights over their data, such as the greater need for consent and the right to be forgotten.
For GDPR compliance, generally, most larger organisations will need a Data Protection Officer (DPO), and most smaller ones won’t.
Knowing that you may need a DPO is one thing, but what does a DPO actually do? Firstly, the DPO is NOT responsible or accountable for GDPR compliance. This duty falls on the organisation...
Frequently Asked Questions on the GDPR