02) Does your organisation have a nominated Data Protection Officer (DPO)?
GDPR DPO Data Protection Officer
Written by Haydn Brooks
Created on March 18, 2019
Modified on August 27, 2019

Answer yes if your organisation has a nominated Data Protection Officer as defined by GDPR.

GDPR introduces a duty for you to appoint a data protection officer (DPO) if you are a public authority or body, or if you carry out certain types of processing activities.

How to implement the control:
A useful guide on Data Protection Officers was published by the ICO and can be found [here](https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/accountability-and-governance/data-protection-officers/ "ICO DPO Guide").

If you would like to contribute to this article or provide feedback, please email knowledge@riskledger.com. Contributors will be recognised on our contributors page.