A question that is apparently very easy to answer. However, it is in practice quite as complex. The requirements for the qualification of a supervisor are high in relation to a company and existing qualifications need to be updated constantly. Companies have always faced the difficult decision a company data protection officer or but this performance to order by to shop externally. The reason is the often different viewing angle and the approaches thereof arising.
It is also required that a company or external data protection officer must have a broad knowledge and last but not least have an intellectually honest personality. The legislature has defined the duties and requirements of the data protection Commissioner in the Federal Data Protection Act BDSG. So it says in section 4 g based: the Commissioner for data protection works towards compliance with this Act and other legislation on data protection. It goes on to say section 4f based: to the Commissioner for data protection may only be ordered if you have the expertise required to carry out its tasks and reliability. This requirement is relativized but in the next sentence, which again led to signs of softening in the past.
For this reason, the Dusseldorf district has concretizes the requirements to a data protection supervisor that is the Union of the Supreme supervisory authorities for data protection in the non-public sector, also in November 2010 and therefore set as mandatory standard. Continue reading after requirements data protection officer / companies and their top lines are in addition to the requirements of the Federal data protection act in general but also with the requirements from other management systems and on those of its customers faced. It is particularly desirable, from the point of view of the companies if the privacy not only compliance with the law but also effectively implemented, but is linked with existing built-in management systems IMS, thus doubled Expenses and documentation to prevent. Conclusion: The requirements for the qualification of a supervisor are high in relation to a company and existing qualifications need to be updated constantly. Companies have always faced the difficult decision a company data protection officer or but this performance to order by to shop externally. Simplified shown it can actually stated; The scope of activity of a data protection officer is greater than 50 per cent of a full-time, permanent employment of data protection supervisor should be checked. The scope but below 25 percent of a full-time job, so is worth the outsourcing to external. Contact: It4management Matthias Hemming up de Breede 2 46395 Bocholt 02871 4896641