Office Infoline 606-950-000
EN
PL
News and events
About us
President and Deputy President of the Personal Data Protection Office
Predecessors
European Data Protection Board
EDPB's latest guidelines, recommendations and best practices
EDPB Plenary meetings
Public consultations
What we do
Events
Conferences and webinars
‘Michał Serzycki’ Data Protection Award
Data Protection Day
16th Data Protection Day
Establishment of the Council of Europe Data Protection Day
Your data – Your concern
General information
Implementation of the programme in 2022/2023 (13th edition)
Implementation of the programme in 2021/2022 (12th edition)
Logo for download
Implementation of the programme in 2023/2024 (14th edition)
Cooperation
European Data Protection Supervisor
International
Memoranda of understandings
Legislation
Legal acts
Decisions of the President of the Personal Data Protection Office (PL)
Contact
Office Infoline 606-950-000
For citizens
For controllers
For DPOs
Settle the case
For citizens
For controllers
For DPOs
News and events
About us
About us
President and Deputy President of the Personal Data Protection Office
Predecessors
European Data Protection Board
European Data Protection Board
EDPB's latest guidelines, recommendations and best practices
EDPB Plenary meetings
Public consultations
What we do
What we do
Events
Events
Conferences and webinars
‘Michał Serzycki’ Data Protection Award
Data Protection Day
Data Protection Day
16th Data Protection Day
Establishment of the Council of Europe Data Protection Day
Your data – Your concern
Your data – Your concern
General information
Implementation of the programme in 2022/2023 (13th edition)
Implementation of the programme in 2021/2022 (12th edition)
Logo for download
Implementation of the programme in 2023/2024 (14th edition)
Cooperation
Cooperation
European Data Protection Supervisor
International
Memoranda of understandings
Legislation
Legislation
Legal acts
Legal acts
Regulation (EU) 2016/679 and accompanying acts
Directive 2016/680
Decisions of the President of the Personal Data Protection Office (PL)
Contact
Home Page
For DPOs
Designation and position of DPO
Designation and position of DPO
Should the data protection officer be designated based on the same qualifications as it was for the
Can an association’s board member be a DPO in the same association at the same time?
Can the role of the DPO also be performed by a person from outside the controller’s/processor’s...
Should a DPO be designated in a non-public health care facility?
What is the DPO's performance of tasks with due regard to the risk?
Can different enterprises not forming part of the same group designate a single DPO?
How should the qualifications of a candidate for the role of DPO be assessed?
Can the DPO be an employee of the controller?
Can public entities designate a single DPO outside the situation regulated by Article 37(3)
Is it possible to combine the function of the DPO with the duties of an information system administr
Can the DPO be a person who fulfills the function of the head of a unit in the organisation?
Can a DPO simultaneously fulfill the function of a classified information protection officer?
Can a foreigner fulfill the function of a DPO?
Can more than one DPO be designated?
Absence of establishment in the EU and notification of the DPO
Should a deputy DPO be appointed (designated) to a permanent position?
What guarantees of independence have been granted to the DPO under the GDPR?
Can Shared Services Centres (SSCs) appoint one Data Protection Officer (DPO) for all serviced units?
How many entities can one DPO serve at most?
Is it possible to combine the DPO’s function with tasks related to handling requests from whistleblo
Is the controller obliged under the GDPR to set up a team for the DPO?
Should a data processing agreement be entered into with an external DPO?
Does the obligation under Article 38(2) of the GDPR apply to a controller with an external DPO?
Should there be a data processing agreement with an external DPO performing tasks for the bank?
Can a relative of the manager be a DPO?
Does the DPO need to take a DPO training course and have a certificate proving it?
Is it possible to designate a legal entity to perform the DPO function?
Who sends the notice of dismissing of the data protection officer in case of liquidation?
Is the head of the registry office a controller and is obliged to designate a DPO?
Designation of the DPO in a communal (city) guards located in the structure of the office
Can the DPO function be combined with the profession of a barrister or legal advisor?
Should the DPO be appointed based on the same qualifications as the administrator of IS?
Can the DPO's work be audited?
Does the controller have to provide the name of the DPO on the website?
Do the DPO's contact details need to be easily accessible?
Who can and who does not have to designate a DPO?