Responsibility for the management of data protection policies and ensuring compliance with legislation in my Department is currently assigned to the Corporate Governance Unit. The officer responsible for data protection matters also performs other duties in this unit.
My Department will be engaging in a review of its arrangements in light of the requirements of the new EU General Data Protection Regulation, which is due to come into force in May 2018. The appointment of an officer to the role of Data Protection Officer, as provided for under the Regulation, and the nature of the duties to be associated with the role, will be considered in due course within the context of that review.