The current situation
Data protection from different perspectives and outlook
At the two employee information events in 2022, the “bosses” were informed about the planned process and the current data protection situation. Having a Data Protection Officer means that a contact person responsible for this important issue is available for in-house staff and for people outside the company.
What has been done since the 1st employee information event?
In spring and fall, the issue was strategically realigned by the CEO and the Data Protection Officer of bossinfo.ch AG and assessed from an external perspective with the help of a renowned Swiss law firm. The assessment was positive: bossinfo.ch AG takes the issue seriously, both as a service provider (customer perspective) and as an employer (internal perspective), and the pragmatics required by management can be adhered to. So data protection and the priority of providing billable services are not mutually exclusive. In principle, Boss Info does what’s required to guarantee proper management in data protection just as in other areas.
The combination of an “internal Data Protection Officer” supported by an “external law firm” has allowed the company to manage its data protection in a stable and comprehensible manner. With the aim of “going further”, bossinfo.ch AG is also assisted by the renowned technical inspection agency TÜV Hessen, on the one hand through regular consultations, and on the other in the form of tailor-made help if required by the relevant circumstances.
First perspective: Service provider for customers
In principle, the responsibility for the lawful processing of data lies with the customer, i.e., the data controller. As an ICT service provider, Boss Info is responsible for technical security and the fundamental adherence to data protection principles. It’s important to point out that Boss Info, as an ICT service provider, cannot take on any data protection tasks for the customer itself. This aspect is the responsibility of the customer and not our technical professionals.
Second perspective: Employees
As an employer, Boss Info respects the applicable law and is also guided by best practices when it comes to data protection for employees. These requirements are implemented and practiced in everyday work in consultation with the Human Resources department.
Outlook: Next steps and contact person
As outlined at the beginning, the issue has been strategically aligned, so it’s clear which are or will be the necessary steps for the rest of 2022 and the coming year. The consultations with the external parties mentioned above are just as much a part of this as the internal sensitization of managers and employees. In cooperation with the above law firm, we will refine and continuously improve how we manage data protection. All relevant departments and officers will be informed and involved in due course. Our contact person Christian Hebeisen, Data Protection Officer of bossinfo.ch AG, is on hand to help.