Top Management
The CEO or MD of <<Organisation>> is the Data Controller and as such has overall responsibility for the lawful processing of all personal data processed by the <<organisation>>. They also have overall accountability for procedural documents and have ultimate responsibility for compliance of this policy and data protection across the entire <<organisation>>.
The Data Protection Officer (DPO) Ensuring that the <<organisation>> satisfies the highest practical standards for handling personal data whilst assisting the <<organisation>> in demonstrating compliance with GDPR data protection legislation as part of the enhanced focus on accountability.
All employees are required to understand their responsibilities under GDPR data protection legislation, and to know to contact the Information Management and Compliance Department with any data protection related queries.