Data Protection Officer and Privacy Consultancy

C R Jackson


Privacy Consultancy

Introduction



I am  available and qualified ( IAPP  CIPP/E and CIPM )  to undertake the tasks of


A.. The Data Protection Officer, and to consult on
B.. Management of Data Privacy Programs


A. Data Protection Officer *

  1. Position of the DPO


The DPO reports directly to the highest level of management and is given the required
independence to perform their tasks.           


DPO is informed, in a timely manner, in all issues relating to the protection of personal data.


DPO is sufficiently well resourced to be able to perform their tasks.


DPO cannot be penalised for performing their duties and should therefore have the
trust of authority


The DPO should not have tasks which result in a conflict of interests with their role
as a DPO.


2. Tasks of the DPO



The DPO is tasked with monitoring compliance with the GDPR and other data protection
laws, our data protection policies, awareness-raising, training, and audits.


The company takes account of the DPO’s advice and the information they provide on
the company’s data protection obligations.


The company, when carrying out a DPIA, seeks the advice of the DPO who also monitors
the process.


The  DPO acts as a contact point for the ICO. The DPO co-operates with the ICO,
including during prior consultations under Article 36, and will consult on any other matters.


The DPO has due regard to the risk associated with processing operations, and takes
into account the nature, scope, context and purposes of processing.


The DPO will  be easily accessible as a point of contact for our employees,
individuals and the ICO and the contact details of the DPO will be published and communicated to the ICO.


B. Consultancy on the Management of Data Privacy Programs

( CIPM capabilities )

in the matters of



Policies, procedures and governance
Privacy-related awareness and training
Incident response
Communications
Design and implementation of privacy controls
Privacy issues with existing products and services
Privacy-related monitoring
Performing privacy impact assessments
Development of privacy staff
Privacy-related investigations
Privacy-related data committees
Privacy by design in product development
Privacy-related vendor management
Privacy audits
Proper cross-border data transfers


Through the configuration of



  1. Privacy Program Governance
  2. Operation of the Privacy Operational Life Cycle

*