Article 32.01
A data controller of major importance shall designate a Data Protection Officer with expert knowledge of data protection law and practices, and the ability to carry out the tasks prescribed under this Act and subsidiary legislation made under it.
Article 32.02
The Data Protection Officer may be an employee of a data controller or engaged by a service contract.
Article 32.03
The Data Protection Officer shall — (
a) advise the data controller or the data processor, and their employees, who carry out processing made under this Act;
(b) monitor compliance with this Act and related policies of the data controller or data p...