Search

Data protection officer under German law

Sec. 38 BDSG states that a data protection officer is required if, as a rule, a controller continuously employs at least 20 persons dealing with the automated processing of personal data.

Further, for private bodies with less than ten persons dealing with the automated processing of personal data, a DPO is also required, if the controller or processor undertake processing subject to a DPIA, or if they commercially process personal data for the purpose of transfer, of anonymized transfer or of market or opinion research.

Public bodies

In accordance with Sec. 5-7 BDSG, it is obligatory for public bodies to designate a DPO.

activeMind.legal Rechtsanwälte is a law firm specialising in data protection law. With our partner firms in the UK and Switzerland, we cover all aspects of GDPR compliance and national data protection law in Europe.

Munich

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Potsdamer Straße 3
80802 Munich, Germany

+49 (0) 89 / 919 29 49 00

Berlin

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Kurfürstendamm 56
10707 Berlin, Germany

+49 (0) 30 / 770 19 10 70

Services

Resources

About

Group

© 2016-2024 activeMind.legal

powered by rethink digital & KLEINWERKSTATT

Contact us!

+49 (0)89 / 91 92 94 – 900

Full details of how we handle your data can be found in our privacy policy.

Secure the knowledge of our experts!

Subscribe to our free newsletter:

By clicking on "Subscribe now" you consent to receive our newsletter. We will only use your data in accordance with our privacy policy.