The document contains a RACI matrix (Responsible, Accountable, Consulted, Informed) for data protection-related tasks and processes. It clearly describes the distribution of roles and responsibilities in data protection management. The focus is on the most important data protection processes such as data processing, risk and impact assessments, handling requests from data subjects, training, auditing, contract management with processors, reporting procedures for data breaches and updating data protection guidelines.

The matrix typically assigns responsibilities between the data protection advisor, company management, division managers, IT department, HR and communications. This provides transparent rules on who performs which tasks operationally (responsible), who bears overall responsibility (accountable), who is involved in an advisory capacity (consulted) and who is informed (informed). The aim is to clearly assign responsibilities to ensure legally compliant, coordinated and traceable data protection processes within the company.

Disclaimer

The products in our shop do not constitute legal advice. HÄRTING Rechtsanwälte AG does not guarantee their accuracy or timeliness. All rights reserved. Purchasing a product does not constitute a client relationship. If you would like professional advice, please feel free to contact us.