Data Protection Officer

The request was successful.

Dear Team,

Article 37 of the General Data Protection Regulation requires the designation of a data protection officer, if an organisation is carrying out particular activities.

https://gdpr-info.eu/art-37-gdpr/

I am trying to find out how organisations chose who would be the designated DPO, based on their professional qualities, expert knowledge of data protection law and practices and the ability to fulfil the tasks referred to in Article 39.

If the name of your DPO is not listed on the Information Commissioner’s Register,, then I am happy for you to redact this, however please provide any recorded information you hold which shows how your organisation went about designating a DPO.

Yours faithfully

Alison Benson

Margaret Keyse, Scottish Information Commissioner

4 Attachments

Dear Ms Benson

 

Attached to this email are the following:

 

·         a notice under section 16 of the Freedom of Information
(Scotland) Act 2002

·         a schedule listing the information being disclosed to you

·         the pdf of the information being disclosed to you.  (I won’t
know until I press “send” whether the file is too large.  If it is, I’ll
send it on in smaller chunks.)

 

Please drop me a line to let me know you’ve received this email.

 

Thanks

 

Margaret

 

Margaret Keyse

Head of Enforcement

________________________________________

 

Scottish Information Commissioner

Kinburn Castle, Doubledykes Road

St Andrews, KY16 9DS

 

Tel:       01334 464610

Fax:      01334 464611

Email:   [1][email address]

Web:    [2]www.itspublicknowledge.info

Twitter:  [3]@FOIScotland

 

[4]cid:image001.jpg@01D1B813.F6E95030

 

For information about what we do with personal data see our [5]Privacy
Notice

References

Visible links
1. mailto:[email address]
2. http://www.itspublicknowledge.info/
http://www.itspublicknowledge.info/
3. https://twitter.com/FOIScotland
5. http://www.itspublicknowledge.info/home/...