The Data Protection Officer (DPO)
This is an introduction to the role of the University's Data Protection Officer (DPO).
The University has appointed Dr Rena Gertz as its Data Protection Officer (DPO).
The main tasks of the Data Protection Officer are:
- to implement the requirements of data protection legislation throughout the University;
- to inform and advise the University and staff processing personal data of their obligations;
- to monitor compliance, including the assignment of responsibilities, awareness-raising and training of staff, and related audits;
- to provide advice where requested about privacy impact assessments and monitor their execution;
- to act as the contact point for the Information Commissioner's Office on issues related to personal data.
The role of the DPO is defined in the GDPR. The DPO must be allowed to perform tasks in an independent manner, set the data protection strategy for the University and report to the highest management level in the University.
The DPO works closely with the University's Records Management Section. The Records Management Section provide day to day support for staff on data protection matters.