The Dutch Personal Data Authority (Autoriteit Persoonsgegevens or AP) is obliged to deal with complaints and reports of data breaches. Research has shown that this number is increasing in the Netherlands. This takes up a lot of the AP's time. As a result, the AP no longer has time for its core task: tackling deliberate violations.
To make more time available for this, the AP encourages organizations to appoint a Data Protection Officer (DPO). Complaints and data breaches can then be dealt with quickly. In practice that will be the work of the DPO.
The DPO is responsible for supervising compliance with privacy laws and regulations, listing and maintaining data processing operations and dealing with questions and complaints from people inside and outside your organization. In addition, the DPO can support the development of internal regulations, give tailored advice on privacy and provide input for the drawing up or adjustment of codes of conduct.
In short, when you appoint a DPO, you minimize the chance of a fine. You will show as an organization that you take privacy seriously.
The problem is, however, that for smaller organizations it's usually too big an investment to appoint a DPO. Above all, it requires considerable effort to keep up with case law and additional legislation. That is why Olthof Support offers the services of an external FG. He or she will keep you informed of the current state of affairs and check whether everything is in order. The FG also conducts the annual internal audit to show that privacy care is well embedded in the organisation.
If you want to know more about hiring me in the above role, please contact me.