The Data Protection Officer (DPO) is responsible for ensuring compliance with the GDPR within the organisation that has appointed him/her for all processing operations carried out by that organisation.
His appointment is mandatory in certain cases.
An internal or external Data Protection Officer may be appointed for several bodies under certain conditions.
To guarantee the effectiveness of his or her duties, the Data Protection Officer must have professional qualities and specific knowledge and must have the appropriate material and organisational means, resources and positioning.