Organizations in India are debating on what are the credentials of a DPO who is emerging as one of the senior most executives in an organization reporting directly to the Board. Many companies would like to have a trusted person within the organization to be elevated to this coveted post.
Often such discussions lead to CISOs and CTOs being considered for filling up the post.
It is however time to discuss if the CHRO is also a person who should be considered for elevation as DPO. Every company small or big has HR functions and every such company needs to be considered as a “Data Fiduciary”. The CHRO is therefore almost always required to manage DPDPA compliance for employees whether there is a designated DPO or not in the company. Hence a CHRO can implement DPDPA for employees and gradually emerge as the DPO material himself/herself. If a legal person without technical knowledge or a Technical person without legal knowledge can become a DPO, it is necessary to ask why a HR specialist cannot become a DPO.
Let us discuss this in today’s interaction at greyt HR community.
Naavi
