DPO Mandatory Tasks:
  • Advise and inform on controller / processor obligations.
  • Monitor compliance with GDPR and data protection statutes.
  • Advise and monitor risk and DPIAs.
  • Communicate / cooperate with supervisory authorities and data subjects.
  • Be involved in all data protection matters, including non-EEA data flows.

DPO Optional Tasks:
  • Legal analysis supporting compliance, including third-country privacy statutes.
  • Legal and risk analysis of data protection contracts and online terms.
  • Legal and risk analysis of outsourced cloud computing activities.
  • Define GDPR compliance tools and methods.
  • Guide privacy trust-mark, InfoSec, and data protection certifications.


  • Presenter of “Data Protection Officers - Performing the Essential Tasks workshop at Data Protection Congress Brussels.

  • Privacy and technology lawyer, IT/InfoSec leader, and IS auditor with significant professional, technical, and leadership experience in Asia, US, and EU.

  • Qualifications:  Attorney (US), CPA (US), CIPP/EU, CIPP/US, CCSK, CRISC, ECM-M, CISM, ERM-P, CISA, and CGEIT

Lecturer - Privacy Law, IT, and InfoSec:

  • DPOs - Performing the Essential Tasks
  • Is DPO or EU Rep Required under GDPR?
  • GDPR for SMEs
  • GDPR: Principles, Obligations, and Data Subject Rights

Author - Legal History Books:

Author - Legal Technology Books (recent):


Author - Legal Articles (2020-21):

Editor - Legal Periodical: