The appointment of a Data Protection Officer (DPO) is mandatory in the following cases:
- When processing is carried out by a public authority or public body.
- When your core activities consist of processing that requires regular and systematic large scale monitoring of data subjects.
- When your core activities consist of the large-scale processing of special categories of personal data or data relating to criminal convictions and offences.
You are required to declare your DPO to your supervisory authority.
France: the DPO (Data Protection Officer) must be declared to the French Data Protection Authority, namely the “Commission Nationale de l’Informatique et des Libertés” (CNIL).
For more information and to make the online designation of your DPO, please visit the CNIL website.
Belgium: companies must declare their DPO to the APD, the Belgian Data Protection Authority.
For more information and to make the online designation of your DPO, please visit the APD website.
In Belgium, if your organisation processes data as a processor on behalf of a public authority or a public body, you have the obligation to appoint a DPO.
Don’t miss the must-attend event for all those involved in data protection, the Printemps des DPO, which takes place every year in Paris!