external data protection officer

Here are all the main areas of concerns for a DPO. If you are worried too then read, learn and grow with us.

There have been over 160,000 EU GDPR data breaches since its implementation in 2018. The fines collected from these breaches total over €400 million. This challenges all businesses that fall in the jurisdiction of the EU. 

Here’s what worries the DPO’s the most. Hire a DPO for your company.

Brexit, technology innovation, and communications regulations

Brexit will trigger a lot of policy changes. It has to be the number concern here when considering the stress factors of the DPO’s. Things may become much clearer after the transition period ends on 31st December 2020. New stricter policies may arise for companies operating in England then.

CCTV’s

CCTV is complicated technology. Public understands and demands their rights under the GDPR and also outside it out of awareness and education. DPO’s now are receiving more requests to access CCTV footage. There has to be an effective and proportionate policy to deal with subject access requests in this regard without compromising the privacy of others.

Image consents for marketing

The “legitimate interests” basis when using images is no longer adequate. You can just not show a marketing image to people, there has to be better consent and clear respect here. There are challenges in terms of recording consent and inclarity regarding the actions required when the consent is withdrawn. 

Perhaps with time and monetary investment this will improve.

 

Data security

Data Security is a joint responsibility of a technology officer, and a DPO. However, technology requires money and research and not enough businesses are willing to do that now. Even if this poses a risk to them. The realisation is taking much more time than it should. Greater penalties are going to perhaps, redirect the focus on compliance and data security provision.

Data breaches

Reporting and monitoring breaches fall under the duty roster for the DPOs. They need to make sure that the staff are aware of their responsibilities and they need to be proactive when making a decision regarding the breach and reporting it.  This is one of the main concerns when it comes to handling chaos.

Cookies

Cookies are confusing for non technical people. This is why it is a shady compliance area.  The issue is innocently overlooked on advertised third party products, or tracking visitors and on business websites. While ICO tries, there is little awareness on the subject. Businesses and their DPO’s should rather look into products that can help them gain consent, record and track the use of their cookies. These are necessary for compliance and a relief for the data team.

The climate of the e-Privacy law and the EU legislation is changing, there need to be active involvement on the part of businesses to learn to adapt to it and cope with what is required of them. 

Tags: , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Protect yourself, get compliant fast.

Scan & Audit your Cookies

Scan your website Cookies, generate a fully-customisable Cookie Consent Banner
& create a Cookie Policy – FREE