GDPR: Axitea now offers DPO as a Service

Available to small and large companies, as well as PA, the service allows compliance with the GDPR without any particular organizational and economic burdens.

Following the entry into force of the GDPR, all companies must adopt a series of measures to better protect and manage the third-party information they process.These include, in some specific cases, the appointment of a Data Protection Officer. To respond to this pressing need, Axitea has launched DPO as a Service.

Thanks to this service, customers – big and small companies, and also public administrations – can turn to specialists to appoint a Data Protection Officer (DPO), without particular organizational and economic burdens. A DPO is a data protection expert, whose task is to help the data controller (the company) assess and organize the management of personal data processing and protection, so that they are processed in a lawful, relevant, transparent manner and with appropriate safeguards and confidentiality levels.

“The need to comply with regulations as extensive and articulated as the GDPR, has led many organizations to review their data processing and management procedures and to equip themselves with skills not necessarily present in the company,” explains Andrea Lambiase, Head of Management Consulting. “Being able to count on a partner such as Axitea, qualified and competent in solving problems related to GDPR regulations, represents an undisputed advantage for these companies, both from an organizational and economic standpoint, making compliance-related costs variable.”

The activities of the DPO

In the form of a service provided remotely and at the customer’s expense, the DPO provided by Axitea will carry out the activities that the European Supervisor requires from companies that, by necessity or voluntarily, decide to implement the role in question. Specifically, the DPO’s duties include:

• Informing and advising organizations and their employees on their obligations under GDPR and national legislation;
• Monitoring compliance with the GDPR and internal data protection policies, including allocation of responsibilities, awareness raising and training of staff and related audits;
• Providing, if requested, an opinion on the impact assessment of processing on data protection and monitor its performance;
• Working with the supervisory authorities and acting as their contact point, in order to facilitate their access to the documents and information necessary for the performance of the Data Protection Officer’s duties, as well as for the exercising of the investigative, corrective, authorizing and advisory powers attributed to them by the GDPR.

When is the DPO mandatory?

The GDPR legislation identifies three cases in which such an appointment is mandatory:

• where processing is carried out by a public authority or public body;
• when the organization’s main (or primary) activities consist of treatments that require “regular and systematic monitoring” of data subjects “on a large scale”;
• when the organization’s main activities consist of “large-scale” processing of sensitive data (health conditions, sexual orientation, etc.) or judicial data (relating to criminal convictions and offences).

—

Axitea

Axitea operates as a Global Security bProvider in the virtuous intersection between innovative technologies, advanced security services and physical and cyber protection systems in a rapidly changing market, and for the convergence between IT, telecommunications, controls, automation and Internet of Things. With a wealth of knowledge, skills and experience developed over time in the field of Surveillance and Security, Axitea offers a wide range of services, ranging from territorial monitoring and proactive management of alarms and interventions, to the development of specialist skills in the design, implementation, integration, maintenance and management of platforms and technological solutions dedicated to physical security, access control, video surveillance, satellite monitoring and protection of ICT infrastructures.