According to Article 37 of the General Data Protection Regulation (GDPR), any organization who is a data controller or data processor may be required to designate a data protection officer (DPO) as a point of contact for the organization.
In this article:
Assign Data Protection Officer
To assign a Data Protection Officer (DPO) for your organization, select Hi [Your Name] from the top-right of any Greenhouse Recruiting page, and click Account Settings from the drop-down menu.
From the Account Settings page, click Contacts on the left-hand panel.
Click Edit beside Data Protection Officer.
Use the Edit Data Protection Officer dialog box to select a user from the provided dropdown menu.
Note: Only Site Admin users can manage GDPR information as the Data Protection Officer (DPO).
When you have finished, click Save.
Your selected user will be assigned and saved as your organization's DPO and will be listed on the Contacts page.
You can also find your DPO selection under Configure icon 
then select the Privacy & Compliance tab on the left.
Select Configure beside General Data Protection Regulation (GDPR).
Your Data Protection Officer (DPO) will be listed at the top of your GDPR settings page.
Deactivate user assigned as Data Protection Officer
Before you can deactivate a user who is currently assigned as your organization's Data Protection Officer, you will need to remove that user from the DPO responsibility.
To reassign your organization's DPO to another user, select Hi [Your Name] from the top-right of any Greenhouse Recruiting page, and click Account Settings from the drop-down menu.
From the Account Settings page, click Contacts from the left-hand panel.
Click Edit beside Data Protection Officer.
In the Edit Data Protection Officer box, select a different user from the provided dropdown menu. When finished, click Save.
Your organization's DPO will be reassigned to the new user you have selected.
Once complete, you can deactivate the user account for the former DPO.