Hacker News new | ask | show | jobs
by sb8244 2969 days ago
The parent comment point has been missed or understood but not used. The point is that small companies which are valid must jump through significant hurdles to satisfy gdpr. Contracting an expensive DPO (are they going to be doing you a service in pricing or making out well) to set this up may be more than some small businesses can handle.
1 comments
outsideoflife 2969 days ago
Larger than small business here, we are not employing a DPO and we are complying with GDPR.
link
sb8244 2969 days ago
You are employing a DPO if you are compliant. https://digitalguardian.com/blog/what-data-protection-office...

You most likely already had one and are now paying them to do this as well

link
outsideoflife 2969 days ago
> You are employing a DPO if you are compliant.

In the UK the ICO is the governing body, and they say I don't need one. From their guidance linked below

>The GDPR introduces a duty for you to appoint a data protection officer (DPO) if you are a public authority, or if you carry out certain types of processing activities.

I am neither a public authority or carry out those certain types of activity.

https://ico.org.uk/for-organisations/guide-to-the-general-da...

link