WP29 Offers Guidance on DPOs, Data Portability and Lead Supervisory Authority

To assist companies in better understanding their compliance obligations under the EU General Data Protection Regulation, the Article 29 Data Protection Working Party has released guidelines and FAQs for three key issues: (1) the appointment and duties of a data protection officer (DPO); (2) the scope of the right of of data portability; and (3) the designation of the supervisory authority pursuant to the “One-Stop-Shop” principle. This alert details what companies should consider in light of these guidelines as they work towards the May 2018 deadline.