The GDPR needs the controller plus the processor to designate a DPO to oversee details security technique and GDPR compliance. Organizations are needed to have a DPO should they course of action or shop big amounts of EU citizen info, course of action or shop Specific own facts, regularly check https://cybersecurityconsultinginsaudiarabia.blogspot.com/