In just under 500 days, Europe’s comprehensive and expansive data protection regulatory scheme, the General Data Protection Regulation (GDPR) goes into effect, driving much anticipatory posturing and speculation by businesses, legal departments and privacy consultants everywhere.
Contributing to some collective unease, however, has been the GDPR’s somewhat general language and broad terminology, particularly with respect to the role of the data protection officer (DPO). But to the rescue came the EU’s Article 29 Working Party (WP29), who in mid-December 2016, finally made good on their promise to release further guidance on several aspects of the GDPR , publishing guidelines and FAQ’s on data portability , identifying lead supervisory authorities and DPOs .