Last month, Italy’s data protection authority, the Garante, issued an opinion clarifying the role of the data protection officer, Lexology reports. The Garante issued the opinion following a request from an organization. The Garante states a DPO needs to have "an in-depth knowledge of the privacy laws and practices, as well as the administrative rules and procedures that characterize the specific field of reference. In their selection, it will be appropriate to focus on individuals that can demonstrate professional qualities appropriate to the complexity of the task to be carried out, perhaps by documenting their experiences, participation in professional courses (especially if the level achieved is documented)." The DPA also states a DPO does not need to have a formal certificate of professional competence to perform in the role.
If you want to comment on this post, you need to login.