The General Data Protection Regulation (GDPR) came into force on 25 May 2018 bringing with it new, more comprehensive laws. One of the biggest changes is the mandatory appointment of a certified Data Protection Officer (DPO) for certain companies that process personal data. However, with change comes uncertainty and for some controllers it is unclear [...]