Section 4 of the General Data Protection Regulation deals with the appointment and role of a Data Protection Officer. All public authorities and bodies including Government department's are required to designate a Data Protection Officer (DPO). The Department has appointed a Data Protection Officer in line with the GDPR.
As the Deputy is aware, the functions of the Data Protection Officer include monitoring overall compliance with the Regulation; providing information and advice to the data controller; liaising with the Regulator and providing training, advice and support on all matters arising from the GDPR.
As is appropriate, my Department's Data Protection Officer is involved in all aspects relating to the processing of personal data and the on-going work of GDPR compliance.
I have no concerns as to the independence of the data protection officer in the Department.