When you are answering the Privacy Policy questionnaire, you will be asked whether you have a Data Protection Officer. A Data Protection Officer is a person that assists the organization in maintaining privacy compliance, provides advice on Data Protection Impact Assessments, and acts as a contact point for consumers and the supervisory authority. This disclosure is required by the General Data Protection Regulation (GDPR) and the United Kingdom Data Protection Act 2018. These laws require the following types of entities to have a Data Protection Officer:
- Public authorities or bodies;
- Organizations whose core activities require large scale, systematic, and regular monitoring of individuals; or
- Organizations whose core activities consist of large scale processing of special categories of personal information or information relating to criminal convictions and offenses.
For more information on who is required to appoint a Data Protection Officer, please read our article on the subject: https://termageddon.com/data-protection-officers-do-you-need-one/. If you do have a Data Protection Officer, select "yes" as your answer and you will be prompted to enter that person's name and contact information. If you do not have a Data Protection Officer, select "no" as your answer.