Data Protection Officer DPO
A Data Protection Officer DPO is a certified person with expert knowledge of data protection law and practices that should assist the controller or processor to monitor internal compliance with GDPR Regulation.
The DPO is similar but not the same as a Compliance Officer as they are also expected to be proficient at managing IT processes, data security (including dealing with cyber-attacks) and other critical business continuity issues around the holding and processing of personal and sensitive data. The skill set required stretches beyond understanding legal compliance with data protection laws and regulations.
The General Data Protection Regulation GDPR (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU).
It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the data protection directive (officially Directive 95/46/EC) of 1995. The regulation was adopted on 27 April 2016.
GDPR becomes enforceable from 25 May 2018 after a two-year transition period and, unlike a directive, it does not require national governments to pass any enabling legislation, and is thus directly binding and applicable.
Data Protection and GDPR become enforceable from 25 May 2018. Stronger rules on Data Protection from 25 May 2018 mean citizens have more control over their data and business benefits from a level playing field. One set of rules for all companies operating in the EU, wherever they are based. Find out what this means for your SME.
How healthcare organizations should prepare for GDPR
All levels of healthcare organizations or centers face huge obstacles on how to apply all the necessary updates to their clinical HIS, Data Banks and to all connected information systems. As many Head of IT Departments knows, all changes should run with an active operation system, because hospitals or clinics cannot switch off their network. In addition, GDPR will require the designation of a Data Protection Officer (DPO). Read more about how Grafimedia SaaS Health IT Experts can bridge the gap and make your company GDPR compliant. Continue reading this GDPR Guide…