My Department has appointed a Data Protection Officer with another staff member working alongside them to ensure the full implementation of GDPR in the Department. In addition, receipt and handling of Data Subject Access Requests is being managed by the Department's FOI Unit. My Department has also established a GDPR Project Board, chaired at Assistant Secretary level, who meet regularly on ongoing data protection issues, and review the Department's data protection policies and procedures. The Data Protection Officer presented reports to the Management Board on the progress of GDPR in the lead up to its implementation, and will continue to meet the Board from time to time to keep them informed of on-going compliance measures.