The Trust Bridge’s Virtual Data Protection Officer support services:

The Tasks of the DPO are varied and ongoing.

 

The DPO ‘should assist the controller or the processor to monitor internal compliance with this Regulation’.

 

The DPO’s minimum tasks are defined in Article 39 of GDPR:

• To inform and advise the organisation and its employees about their obligations to comply with the GDPR and other data protection laws.

• To monitor compliance with the GDPR and other data protection laws, including managing internal data protection activities, advise on data protection impact assessments; train staff and conduct internal audits.

• To be the first point of contact for supervisory authorities and for individuals whose data is processed (employees, customers etc).

 

As part of these duties to monitor compliance, DPOs should

• collect information to identify data processing activities

• analyse and check the compliance of data processing activities

• inform, advise and issue recommendations to the controller or the processor

• assist the data controller to carry out, when necessary, a data protection impact assessment (‘DPIA’), having determined whether or not to carry out a DPIA

• determine what methodology to follow when carrying out a DPIA  and whether to carry out the DPIA in-house or whether to outsource it

• what safeguards (including technical and organisational measures) to apply to mitigate any risks to the rights and interests of the data subjects

• whether or not the data protection impact assessment has been correctly carried out and whether its conclusions (whether or not to go ahead with the processing and what safeguards to apply) are in compliance with the GDPR

• acting as a contact point with the regulatory body and ‘cooperate with the supervisory authority’ and ‘act as a contact point for the supervisory authority on issues relating to processing”.

• facilitate access by the supervisory authority to the documents and information

• assist the controller to ‘maintain a record of processing operations under its responsibility’ and ‘maintain a record of all categories of processing activities carried out on behalf of a controller’.

• create inventories and hold a register of processing operations based on information provided to them by the various departments in their organisation responsible for the processing of personal data.

All organisations need professional data protection and The Trust Bridge provides the organisation’s existing team with additional support without the associated cost of recruitment or personnel management.

 

The Trust Bridge can provide the wisdom, experience and skills needed to make sure that your organisation satisfies the supervisory authorities and ensures ongoing trust from your employees and customers alike.

 

Benefits

• Cost-efficient and effortless privacy and data protection solution

• Permanently available partner in privacy and data protection

• Compliance with the GDPR’s DPO requirements

• Constant access to Privacy Professionals

• Independent advice and solutions

 

We offer a number of services on a one off or monthly basis (minimum period 6 months)