The DPO Liaison confirms that data governance documentation is consistent with GDPR obligations, verifies that DPIAs are complete and current, and ensures that special category data handling follows the documented procedures. The role is responsible ® for FRIA data protection elements and is consulted © on data governance, PMM operation, and serious incident reporting (where personal data is involved).

The DPO Liaison validates Module 4 content, ensuring that the AISDP’s data governance documentation aligns with the organisation’s GDPR compliance posture. Where the system processes special category data under Article 10’s exception, the DPO Liaison confirms that the legal basis, safeguards, and processing justification are documented and defensible.

The role serves as the bridge between the AI compliance programme and the data protection function, preventing the two programmes from diverging.

Key outputs

• DPIA currency and completeness verification
• Special category data handling validation
• Module 4 alignment with GDPR compliance posture
• RACI “R” for FRIA data protection elements