§ 20 DSG LSA
Tasks
(1)The data protection officer shall have at least the following tasks: 1. informing and advising the public body within the meaning of Section 17(1) and the employees who process personal data of their obligations pursuant to the legal provisions enacted for the transposition of Directive (EU) 2016/680 and other provisions on data protection, 2. monitoring compliance with the legal provisions enacted for the transposition of Directive (EU) 2016/680, other legal provisions on data protection and the strategy of the public body for the protection of personal data, including the assignment of responsibilities, awareness-raising and training of employees who process personal data, and related audits, 3. advising in connection with the data protection impact assessment pursuant to Article 27 of Directive (EU) 2016/680 and monitoring its implementation, 4. cooperation with the State Commissioner for Data Protection, 5. serving as a contact point for the State Commissioner for Data Protection on matters relating to the processing of personal data, including the prior consultation pursuant to Article 28 of Directive (EU) 2016/680, and, where appropriate, advising on all other matters.
(2)The data protection officer may carry out other tasks and duties. The public body shall ensure that such tasks and duties do not lead to a conflict of interest.
(3)The data protection officer shall, in the performance of his or her tasks, have due regard to the risk associated with the processing operations, taking into account the nature, scope, context and purposes of the processing. zur Einzelansicht § 20 Abschnitt 6 Unabhängige Aufsichtsbehörde (zu den Artikeln 51 bis 59 der Verordnung (EU) 2016/679 und den Artikeln 41 bis 49 der Richtlinie (EU) 2016/680)