Do you need to appoint a Data Protection Officer (DPO) in your company according to the GDPR and BDSG?
Answer the following questions to determine whether your company is legally required to appoint a DPO.
Are at least 20 employees in your company regularly involved in the automated processing (collection and use) of personal data?
Automated processing includes the use of computers, tablets, smartphones, or servers to handle personal data. An example is sending and receiving emails.
Does your company process special categories of personal data?
Examples include political opinions, religious beliefs, racial or ethnic origin, health data, biometric data, or information about a person’s sex life.
Does your company process personal data on a commercial basis?
This includes processing for advertising purposes, address trading, credit agencies, or for market and opinion research.
Is your company’s core activity related to processing operations that require systematic monitoring of individuals?
Systematic monitoring includes continuous or regular observation of behavior, activities, location, or other aspects of individuals. Examples: permanent video surveillance or monitoring of employee computer usage.
Please answer all questions.