Many organisations, especially those handling large
amounts of personal data will require a Data Protection Officer. Others
may require a Data Protection Responsible Person. This poses two questions:
1: Do we hire someone to fill this role, resulting in an added cost?
2: Do we assign this responsibility to an existing team member, resulting in a time cost?