Data Protection Officer Services

Descriptions

The Contracting Authority over the course of the framework requires the successful Tenderer to provide Data Protection Officer Services to include:•assessment and monitoring compliance with GDPR and national data protection requirements on an ongoing basis for the duration of the contract,•handling and reporting any data breaches including liaising with the DPC, updating the executive management team and reporting to the Board of the Charities Regulator,•managing the records of processing activities,•reviewing all internal policies and procedures and provision of revised documentation where necessary,•regularly reviewing the Regulator’s website and cookies to monitor compliance with applicable privacy and data protection laws,•providing bespoke training to members of staff responsible for dealing with subject access requests and staff who assist the DPO in responding to any data breaches,•advising on DPIAs and validating same where required,•advising on the retention of records held by the Charities Regulator,•advising on contracts the Charities Regulator enters into in regard to any sharing of personal data,•advising on any risks identified by the Charities Regulator associated with Data Protection,•Identify required policies and procedures for drafting to ensure that the Charities Regulator remains compliant with legislation.