Note: Data Protection Officers can only be managed by users with Site Admin level permissions.
According to Article 37 of the General Data Protection Regulation (GDPR), any organization who is a data controller or data processor may be required to designate a data protection officer (DPO) as a point of contact for the organization. In this article, we will cover how to assign and manage users who are designated as the DPO for your organization.
Assign Data Protection Officer
To assign a DPO to your organization, click on Your Name in the upper right-hand corner of the screen. Click Account Settings from the drop-down menu.
From the Account Settings page, click Contacts from the left-hand panel. Click Edit in the Data Protection Officer row.
Using the Edit Data Protection Officer dialog box, select a user from the provided drop-down menu. When you have finished, click Save.
Your selected user will be assigned and saved as your organization's DPO and will be listed on the Contacts page as well as the GDPR tab (Dashboard>Configure>GDPR) for easy reference.
Disable User who is assigned as Data Protection Officer
You will be unable to disable a user who is assigned as your organization's current DPO.
Before you can disable a user who is assigned as your organization's current DPO, you will need to remove that user from the responsibility.
To reassign your organization's DPO to another user, click on Your Name in the upper right-hand corner of the screen and click Account Settings from the drop-down menu.
From the Account Settings page, click Contacts from the left-hand panel. Click Edit in the Data Protection Officer row.
Using the Edit Data Protection Officer dialog box, select a user from the provided drop-down menu. When you have finished, click Save.
Your organization's DPO will be reassigned to the new user you have selected. Once finished, you can continue to disable the user account for the former DPO.