ODO24 Logo
ODO24 Logo
ODO24 Logo
GDPR questions and answers

GDPR: QUESTIONS AND ANSWERS

Category:
DPO Challenges

Can a legal counsel simultaneously serve as a Data Protection Officer (DPO) within a controller's organization?

ANSWER

Legal counsels, as professionals providing legal services, may perform the function of a Data Protection Officer (DPO) provided that they possess the additional qualifications required to carry out the duties of a DPO.

The Polish Data Protection Authority (UODO) addressed this issue in an article published on 28 June 2019: UODO – Can a legal counsel act as a DPO?

Since UODO has not excluded such a possibility, it is generally accepted that a legal counsel may perform the function of a DPO. However, the controller must ensure that holding both roles within the organization does not give rise to a conflict of interest, as referred to in Article 38(6) GDPR.

Show all
PreviousNext

Read also:

12 March 2026

Jak wdrożyć UKSC / NIS2 - poradnik dla firm

12 March 2026

Jak wdrożyć KSC / NIS2 - poradnik dla firm

03 February 2026

Ocena skutków dla ochrony danych (DPIA) – praktyczny przewodnik + wzór formularza

Kalkulator wagi naruszeń

Sprawdź, które naruszenia wymagają zgłoszenia do PUODO

Receive a free package of 4 tutorials and 4 e-learning trainings
The controller of your data is ODO 24 sp. z o. o.