Search

Data protection officer under Czech law

Designation of the Data Protection Officer

The Data Protection Act does not include any exception to the GDPR DPO designation requirements, but it includes an additional category of persons that have to designate a DPO.

Pursuant to Article 14 of the Data Protection Act, not only public authorities or bodies have an obligation to designate a DPO (pursuant to Article 37(1)(a) GDPR), but also bodies established by law that perform task carried out in the public interest.

Notification of the Data Protection Officer to the authorities

The Czech Data Protection Authority published the requirements for the notification of the Data Protection Officer (DPO) and its contact details to the supervisory authority (in Czech).

According to the Czech Data Protection Authority, the form of notification for DPO’s contact details is not specified in more detail by the GDPR. Therefore, the Czech Data Protection Authority recommends notification via a Czech system of special electronic storage used for communication with public authorities, written notification, or email (via posta@uoou.cz). The DPO’s contact details are to be reported by the controller or processor.

Tasks of Data Protection Officers

The Czech Data Protection Authority published a Q&A about the designation and tasks of the DPO (in Czech).

In general, it includes the description of the tasks pursuant to the GDPR, with one notable additional point:

The Czech Data Protection Authority enables the DPO to perform not only the tasks pursuant to Articles 37 to 39 GDPR, but also other tasks based on the agreement between the controller and the DPO. However, the Czech Data Protection Authority stresses that such tasks cannot result in a DPO’s conflict of interest with the performance of the DPO primary tasks pursuant to the GDPR.

Supervisory Authority Guidelines

The Czech Data Protection Authority dedicated a whole section of its website for data protection officers (in Czech) at: https://www.uoou.cz/poverenec-pro-ochranu-osobnich-udaju/ds-5550/p1=5550

In the section, the data controllers or processors may get additional information about the requirements for data protection officers, their designation, consultations for DPOs etc.

activeMind.legal Rechtsanwaltsgesellschaft is a law firm specialising in data protection law. With our partner firms in the UK and Switzerland, we cover all aspects of GDPR compliance and national data protection law in Europe.

Munich

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Potsdamer Straße 3
80802 Munich, Germany

+49 (0) 89 / 919 29 49 00

Berlin

activeMind.legal
Rechtsanwaltsgesellschaft m. b. H
Kurfürstendamm 56
10707 Berlin, Germany

+49 (0) 30 / 770 19 10 70

Services

Resources

About

Group

© 2016-2024 activeMind.legal

powered by rethink digital & KLEINWERKSTATT

Contact us!

+49 (0)89 / 91 92 94 – 900

Full details of how we handle your data can be found in our privacy policy.

Secure the knowledge of our experts!

Subscribe to our free newsletter:

By clicking on "Subscribe now" you consent to receive our newsletter. We will only use your data in accordance with our privacy policy.