DPO — Data Protection Officer
According to IT Jobs Watch, the median salary for the title of Data Protection Officer is £42,500. Depending on where you stand, that’ll either make you rub your hands, or hide your business debit cards.
While a number of DPOs already exist, backed in the UK by a national association, the General Data Protection Regulation that comes into effect in May 2018 brings with it a statutory definition for the position.
In brief, the DPO is a person responsible for impartially ensuring an organisation’s compliance with data protection legislation, and who acts as a single point of contact for the regulator and data subjects. It can be a member of the organisation’s in-house staff, or a service contract with a specialist provider like Privada.
According to the GDPR, the DPO needs to perform their duties independently, report to the highest level of organisational management, and be experts in privacy and data protection legislation, data security and must be supported by the organisation with the resources and continuing professional development necessary to carry out his or her tasks.
The skills and knowledge base of a DPO necessarily includes a variety of areas from IT security to public relations, and the role touches areas of organisations large and small in the public, private and third sectors, including marketing, human resources, corporate communications, sales and IT/tech. With the requirement for experience and expertise, it’s easy to see why the role can attract a generous salary, however smaller organisations may not need to appoint a DPO, and medium-sized businesses and charities may opt instead to outsource the role, likely for a fraction of the cost.
Privada offers data protection compliance assessments to determine your organisation’s need for a DPO and other compliance measures, as well as service contracts for outsourcing the DPO role on an ongoing basis. Visit the Privada website to find out more.