CEDPO Supports Role of DPO in Data Protection Regs
PRIVACY LAW—EUFebruary 15, 2012
The Confederation of European Data Protection Organizations (CEDPO), in a press release, says it "welcomes the recognition of Data Protection Officers (DPOs) as key players" in the draft data protection regulation adopted by the European Commission. The regulation requires the designation of a DPO in organizations with 250 employees or more, public bodies and those in which the main activities involve processing that requires "regular and systematic monitoring of data subjects." Christoph Klug of the GDD said, "DPOs will help to make data protection more effective, to reduce unnecessary administrative burdens and to create trust," while Sachiko Scheuing of the Dutch NGFG notes, "The positive impact of DPOs is already proven by a study of the Dutch Ministry of Justice. We are pleased to hear that this fact is recognized at European level." The requirement allows for flexibility in the positioning of the DPO within--or even outside--an organization, which Cecilia Alvarez of the Spanish APEP says will help to accommodate "the needs to fit organizations of all sizes." Pascale Gelly, CIPP/E, of the French AFCDP says CEDPO members can now join forces to "share their pan-European experiences on topics such as the necessary qualifications which DPOs should hold, the scope of the DPOs' tasks and how to ensure their independence." The CEDPO has released a comparative study of the role of the DPO in 12 European member states.