GDPR Compliance

Are You GDPR Compliant?

The General Data Protection Regulation (GDPR) took effect in Europe in May 2018. Any organization operating in, or doing business within, the EU must comply with these regulations, no matter where in the world they are located.

In order to comply, certain organizations must assign a dedicated Data Protection Officer (DPO) to handle their data security affairs. On the right, you can see explanations for the DPO role, as explained in article 39 of the GDPR.

AwareGO’s security awareness training services can help you fulfill section 1b of GDRP, “awareness-raising and training of staff involved in processing operations”.

We provide training materials in the form of short, interesting and effective security awareness videos that help you inform your employees of possible dangers and how to avoid them. Our video content is ready to deploy on your intranet or internal learning management software, and we also provide a simple, hosted, easy-to-use learning platform to which you can subscribe for your organization.

Don’t hesitate to get in touch for more help and consultation regarding your security awareness training needs.

Tasks of the data protection officer

 

  1. The data protection officer shall have at least the following tasks:
    1. to inform and advise the controller or the processor and the employees who carry out processing of their obligations pursuant to this Regulation and to other Union or Member State data protection provisions;
    2. to monitor compliance with this Regulation, with other Union or Member State data protection provisions and with the policies of the controller or processor in relation to the protection of personal data, including the assignment of responsibilities, awareness-raising and training of staff involved in processing operations, and the related audits;
    3. to provide advice where requested as regards the data protection impact assessment and monitor its performance pursuant to Article 35;
    4. to cooperate with the supervisory authority;
    5. to act as the contact point for the supervisory authority on issues relating to processing, including the prior consultation referred to in Article 36, and to consult, where appropriate, with regard to any other matter.
  2. The data protection officer shall in the performance of his or her tasks have due regard to the risk associated with processing operations, taking into account the nature, scope, context and purposes of processing.