Should all Heads of Compliance/Legal step down as DPO, following the Belgian DPA ruling?
In a rather shocking decision, the Belgian Data Protection Authority (DPA) has fined a company for having appointed its head of compliance, audit and risk as Data Protection Officer (DPO). According to the DPA, this combination of roles creates a conflict of interest and therefore constitutes an infringement of article 38.6 GDPR.
Recent Posts