ODO24 Logo
ODO24 Logo
ODO24 Logo
GDPR questions and answers

GDPR: QUESTIONS AND ANSWERS

Category:
Documentation and Procedures

How many GDPR specialists should an employer hire?

ANSWER

Personal data protection regulations do not provide any guidelines regarding the number of data protection specialists that a controller must have depending on the size of the organisation. It is for the controller to determine how many persons (one or more, e.g. three) will be able to handle the organisation of personal data processing within the organisation. The only requirement imposed by the GDPR is the appointment of a data protection officer when the conditions set out in Article 37(1)(a), (b) or (c) GDPR are met. The requirement to have a DPO is not, however, dependent on the size of the organisation. The decision as to how many specialists a data controller should have therefore rests with the controller itself.

Show all
PreviousNext

Read also:

07 June 2026

TikTok a RODO w sektorze publicznym – czego urzędy mogą dowiedzieć się z niemieckich zaleceń dla instytucji

29 May 2026

Kontrola służbowej poczty e-mail pracownika a tajemnica przedsiębiorstwa - kiedy pracodawca może legalnie przejrzeć skrzynkę?

14 May 2026

Czy pracodawca może opublikować zdjęcie pracownika? Wykorzystanie wizerunku pracownika na gruncie RODO i prawa autorskiego

Szkolenia

Praktyczny kurs IOD (32h) online

Receive a free package of 4 tutorials and 4 e-learning trainings
The controller of your data is ODO 24 sp. z o. o.
Number of GDPR Specialists in a Company: How to Determine Your Organisation's Needs | ODO 24