Good afternoon all,
I have noticed that quite a few DPO position adverts – or at least related ones mentioning DPOs and GDPR - I’ve seen advertised over the last few months have included handling
SARs in the role responsibilities. In considering how this new role can fit into the organisation I wondered if anyone had any thoughts on whether this would be viewed as a conflict of interest for a DPO?
I am aware that a DPO can carry out other tasks in addition their DPO duties, but if a DPO is meant to be a significantly independent and quasi-auditorial role, and report to
the ‘highest level of management’, who would monitor SAR compliance and conduct reviews, etc?
Your views would be very welcome.
All the best,
Dan Palmer-Dunk
Information Compliance Officer
University of Hull
All archives of messages are stored permanently and are available to the world wide web community at large at http://www.jiscmail.ac.uk/lists/data-protection.html
Selected commands (the command has been filled in below in the body of the email if you are receiving emails in HTML format):
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm and are sent in the body of an otherwise blank email to [log in to unmask]
Any queries about sending or receiving messages please send to the list owner [log in to unmask]
(Please send all commands to [log in to unmask] not the list or the moderators, and all requests for technical help to [log in to unmask], the general office helpline)