General Data Protection Regulation (GDPR) introduces new rules, designed to provide EU citizens with better control over their personal information and help them protect their rights.
One of the requirements of the GDPR is the introduction of the role of Data Protection Officer (DPO). This role has to monitor the continuous compliance with the Regulation, as well as to act as a point of contact to the Data Protection Authority and the data subjects.
Filling this role is an expensive challenge. It is expected for the person holding the role of DPO to have specific knowledge, experience, and expertise in the areas of the legal framework, personal data protection, and information technologies.