Katrin Eggert

Current info on the Data Protection Officer’s duty to inform pursuant to Art. 37 Para. 7 GDPR

Pursuant to Art. 37 Para. 7, Data Protection Officers shall notify supervisory authorities as follows:

Who is responsible for reporting? 
The responsible person or the order processor will pass the contact details of the Data Protection Officer on to the responsible supervisory authority, i.e. company management (Art. 37 Para. 7 GDPR).

What data must be reported?
– Company name
– Company address
– Tel. No. of the company
– First name and surname of the Data Protection Officer
– E-mail address of the Data Protection Officer

 

Most supervisory authorities provide an online reporting form that, however, often exceeds the legally prescribed scope. Reporting may alternatively also be via mail or fax.

Federal state Link to reporting page Status 
Baden-Württemberg https://www.baden-wuerttemberg.datenschutz.de/dsb-online-melden/ Online form available
Bavaria Private: https://lda.dsb-meldung.de

Public bodies: https://www.datenschutz-bayern.de/service/
 (will not penalise failure to report before end of August)

Online form available

Online form available

Berlin https://www.datenschutz-berlin.de/meldeformular/ Online form available
Brandenburg https://lda.brandenburg.de/cms/detail.php/bb1.c.233960.de/bbo_contact unclear
Bremen untraceable
Hamburg https://www.datenschutz-hamburg.de/datenschutz-fuer-firmen-und-behoerden/betrieblicher-datenschutz/dsb-meldeformular.html E-mail, mail, fax
Hesse https://datenschutz.hessen.de/service/benennung-eines-datenschutzbeauftragten Online form available
Mecklenburg-West Pomerania https://www.datenschutz-mv.de/kontakt/Mitteilung-von-Datenschutzbeauftragten/ Online form available
Lower Saxony https://www.lfd.niedersachsen.de/startseite/dsgvo/datenschutzbeauftragte/meldung-des-datenschutzbeauftragten-dsb-164093.html Not yet available
North Rhine-Westphalia https://www.ldi.nrw.de/mainmenu_Datenschutz/submenu_Datenschutzbeauftragte/Inhalt/Meldeportal-fuer-Verantwortliche-und-Auftragsverarbeiter-zur-Mitteilung-der-Kontaktdaten-ihres-Datenschutzbeauftragten-nach-Art_-37-Abs_-7-DS-GVO/Inhalt/Meldeportal-fuer-Verantwortliche-und-Auftragsverarbeiter-zur-Mitteilung-der-Kontaktdaten-ihres-Datenschutzbeauftragten-nach-Art_-37-Abs_-7-DS-GVO/Meldeportal-fuer-Verantwortliche-und-Auftragsverarbeiter-zur-Mitteilung-der-Kontaktdaten-ihres-Datenschutzbeauftragten-nach-Art_-37-Abs_-7-DS-GVO.html Failure to report by 31.12. not classified as an offence.
Rhineland-Palatinate https://www.datenschutz.rlp.de/de/themenfelder-themen/online-services/meldeformular-datenschutzbeauftragter-gem-art-37-abs-7-ds-gvo/ Online form available
Saarland https://datenschutz.saarland.de/ds-grundverordnung/meldeformular-datenschutzbeauftragter/ Online form available
Saxony https://www.saechsdsb.de/component/rsform/form/4-kein-titel?Itemid=331 available as PDF
Saxony-Anhalt https://datenschutz.sachsen-anhalt.de/nc/service/online-formulare-des-landesbeauftragten/datenschutzbeauftragten-melden/
Schleswig-Holstein https://www.datenschutzzentrum.de/dsgvo/#dsb Not yet available
Thuringia https://www.tlfdi.de/mam/tlfdi/datenschutz/formular_meldung_dsb.docx
BfDI Not traceable
Protestant Church Die EKD (Protestant Church Germany) has various regional centres:
https://datenschutz.ekd.de/ueber-uns/unsere-standorte/
Sample certificates of appointment available at:
https://datenschutz.ekd.de/wp-content/uploads/2018/05/Online_Muster_Bestellung-%C3%B6B_Einzeln_Version-2.0_2018.rtf
Mail, e-mail
Catholic Church The link to the Catholic Church online portal for naming the Data Protection Officer is:
https://www.datenschutz-kirche.de/meldung_bdsb
Mail, e-mail

20 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *