If a legal person is required to have a data protection officer pursuant to the General Data Protection Regulation of the EU, notify the Estonian Data Protection Inspectorate of appointing an officer via the E-Business Register. By notifying through the portal, the information is also accessible to the public in the same website and thus you have also performed the obligation to provide information to the public. The requirement to notify the Inspectorate of appointing a data protection officer enters into force on 25 May 2018.
Information for appointing a data protection officer have been added to the website of the Data Protection Inspectorate):
Data protection officer
By logging in to the e-Business Register portal, a person with the right to represent a legal person can submit the data of a designated data protection specialist. To do this, press the "My undertakings" button on the home page
Then click on the name of the legal entity for which you want to provide data protection officer data.
The page that opens has a Data Protection Officer section. Click "Add a Data Protection Officer" to add new Data Protection Officer.
To get started, select the type of data protection officer from the drop-down menu. The data protection officer can be a legal or a natural person.
For a natural person, first name and surname, personal identification code and country of personal identification code or date of birth and citizenship of the foreign citizen must be provided.
The business name, registry code and country of the registry code must be provided for the legal person.
You can then specify the start and end dates for the authorization. Dates cannot be in the past. The term of the mandate is "indefinite" by default. This can be changed if desired using the calendar functionality.
An email address is required. There must be at least one, but not more than five, means of communication provided. By clicking on the "Add contact" button, you can choose between three types from the drop-down menu: e-mail address, Internet web address and telephone.
Finally, click the "Save" button.
Data of up to two designated data protection officers can be provided. When you add data for another data protection officer, it is automatically checked that the terms of office of the two data protection officers do not overlap.
Read also: Guidelines to change data protection officer