A few days ago the Cajasol Institute of Madrid hosted the event 'Role and challenges facing data protection officers in the implementation of the GDPR'. The session was joined by Joaquín Muñoz, Head of IT&IP at ONTIER Spain; Paloma Aparicio, EU GDPR Legal Project Manager at Mondelez International; and Teresa Miquel, Data Protection Officer at Grupo Suez.
The General Data Protection Regulation is already in force and compliance will be mandatory since May 25, 2018. Starting that day, all European companies must have fully adapted their data processing procedures to the new regulatory framework. Otherwise they would be facing fines up to 4% of their annual turnover.
According to the criteria stablished by the GDPR which, apparently, will be defined based on the Spanish Data Protection Act, many companies will need to appoint a Data Protection Officer (DPO).
The DPO shall be appointed based on professional qualifications, taking into account previous experience in data protection, while showing thorough knowledge on the GDPR and a clear ability to meet all the requirements set by the GDPR.
In this round table discussion the speakers, together with the DPOs of some of the largest Spanish companies, went over the challenges brought by the GDPR and facing Data Protection Officers.