The tasks of the data protection officer include, in particular, advising and informing the person responsible or the processor as well as the employees involved in the processing with regard to the obligations under the GDPR or other data protection regulations.
The data protection officer ensures that the persons responsible comply with their obligations according to GDPR. The data protection officer is not authorized to issue instructions and therefore only advises the management. The company itself is responsible for implementing the proposed measures.
The data protection officer is also the point of contact for all matters relating to data protection for the relevant company as well as for parties concerned who have questions about data processing.
In addition, the data protection officer plays a key role in the development of data protection documentation, such as the development of processing directories or the documentation of technical and organizational measures.
Other tasks include cooperating with the supervisory authorities as well as training and sensitizing employees to the topic of data protection.