What should the company size be for a Data Protection Officer to be necessary?

Provided that there are usually at least ten persons permanently involved in the processing of personal data, the appointment of a Data Protection Officer is mandatory according to German data protection law. This also includes external service providers such as an external accounting department.

If you carry out processing which is subject to a data protection impact assessment or process personal data for business purposes for the transmission / anonymised transmission of personal data, or for the purposes of market or opinion research, then you must appoint a Data Protection Officer, regardless of how many employees are involved in the processing of personal data.

Get an Offer
089 442 550 - 62649