Certified Data Protection Officer (CDPO): Handbook Practical Work Plan Guidance
About the Product
Best available publication to understand the very basics of the Data Protection Officer's Role and Responsibilities as per the EU General Data Protection Regulation.
Providing a practical guide for the Data Protection Officer (DPO) lies at the heart of this publication. Although written from a DPO perspective from the EU General Data Protection Regulation (GDPR) based on this publication the reader is able to design and assemble a practical work plan for any privacy and data protection professional.
- This publication is in practice used by many privacy professionals, data protection professionals within companies, and consultants guiding them.
As stated by the European Data Protection Board (EDPB) it is best practice for the DPO to have a work plan. What does such a work plan look like? Providing an answer to that question lies at the core of this publication. According to the EDPB, it is valued as a good practice for the DPO (or the organization) to compose a work plan, but the form or content of such a work plan is not discussed by the EDPB. In order to answer this central question, the two following (more concrete) ‘lines of orientation for a DPO work plan’ are being applied.
Firstly, the text as enshrined in the General Data Protection Regulation (GDPR) itself codifies an important line of orientation in the embodiment of Articles 37 to 39 of the GDPR in which the designation, positions, and tasks of the DPO are discussed.
Secondly, an orientation line is found in the typical role the DPO is playing in the “daily data protection practice” which can be inferred from, among others, an action plan (or work plan) from an enterprise (institution or organization). In pursuit of compliance with the obligations pursuant to the GDPR, at least the following steps (in any form or comparable language) can usually be distinguished.
- Establish GDPR policies
- Make an inventory of personal data
- Perform a GDPR baseline
- Perform a GDPR gap-analysis
- Perform a GDPR implementation
- Perform GDPR review and update
- Perform GDPR assurance and audit
- Compose and communicate GDPR accountability and reports
- This publication is an interesting and relevant added value for (among others):
- Data Protection Officers (DPOs)
- Privacy Officers (POs)
- Trust Officers (TOS)
- Chief Trust Officers (CTOs)
- Privacy Assistants (PAs)
- Privacy Professionals
- Data Protection Professionals
- Security Professionals
- Ethics Officers
- Compliance Officers
- Risk Officers
- General Counsels
- CISOs, COO, CCO, and other C-Suite Roles and responsibilities
- Project Managers
- Project Assistants
- Privacy, data protection, security, and ethics lawyers
- Privacy, data protection, security, and ethics consultants
- Privacy Solutions Engineers
- Any other data (privacy, security, and ethics) related role
- All others interested in the topics discussed
Any queries?
Please reach out to experts at studentservices@privacad.com
Requirements
Interested in learning about the fundamentals of roles and responsibilities of the Data Protection Officer as per the GDPR
For those who are interested in learning about the foundations of the GDPR, the following course is recommended:
Privacy and Data Protection, Certified GDPR Compliance
From theory to practice (junior and less than 1-year experience level)
