In order to comply with the personal data protection legal provisions, each company must implement technical procedures that respect the legal obligations regarding the storage, encryption, integrity and confidentiality of the data, and for the traceability of the operations performed on the information in the databases.
The duties and responsibilities of a DPO in this context are immense, and its legal responsibility is incredibly high.
Why? Because a single negligence of the DPO in the specific activity can result in the sanction of the company with 4% of the turnover per year.
Obviously, besides the immense risk of financial and activity blockage, in case the company has to pay this fine, it will consider passing the responsibility to the person in charge of data protection (DPO), resorting to legal action in the process, in order to recover the damage.