Discover the role of a Data Protection Officer at Technology & Strategy: GDPR, personal data protection, DPO missions, projects, and future challenges.
The role of data protection officer (DPO) is gaining visibility, yet it often remains misunderstood. Is it purely legal? Is it disconnected from real projects? Is it a role that slows innovation down?
To answer these questions, we chose to start where it all begins: with the career path and expertise behind the role. Through a series of hsorts videos, Lara Weil, data protection officer at Technology & Strategy, shares her background, her day-to-day responsibilities, and her vision of data protection in a technology-driven environment. This article brings together her key insights in a structured, in-depth format.
The role of DPO does not appear overnight, and Lara ‘s career path illustrates this well. With an academic background in law, including both a bachelor’s and a master’s degree, she gradually specialized in topics related to personal data protection. It was during her final year of studies that she discovered the role of data protection officer, at a time when GDPR-related professions were still emerging.
This legal foundation remains essential today. It provides the ability to interpret regulatory texts such as the GDPR, understand compliance requirements, and assess legal risks. However, as Lara explains, legal expertise alone is not enough. The DPO role sits at the crossroads of law, technology, operational practices, and business constraints.
This hybrid positioning is what makes the role both complex and particularly valuable within a company like Technology & Strategy.
Contrary to common stereotypes, the data protection officer is not someone who spends their days isolated behind legal documents. In practice, the DPO plays a cross-functional role, deeply embedded in projects and teams.
At Technology & Strategy, Lara’s daily work revolves around ensuring GDPR compliance, while at the same time supporting teams in a pragmatic and operational way. Her mission is to advise, guide, and monitor, not to block initiatives. Data protection becomes a shared framework that helps teams design better, more responsible solutions from the outset.
Education and prevention are therefore just as important as compliance. By explaining requirements clearly and early, the DPO helps reduce risks, secure projects, and avoid costly corrections later on.
The GDPR is often perceived as a constraint that prevents teams from working efficiently. This perception is one of the most persistent misconceptions surrounding data protection.
In reality, the GDPR is a structuring framework. It encourages organizations to clarify their data processing activities, improve internal processes, and strengthen data governance. Rather than limiting innovation, it enables responsible and secure innovation.
Another frequent misunderstanding is the idea that the DPO is responsible for everything related to personal data. In practice, responsibility is shared. The DPO’s role is to provide expertise, raise awareness, and monitor compliance, while operational teams remain actors of data protection within their own scope.
Seen from this angle, GDPR compliance becomes a lever for continuous improvement, impacting tools, workflows, and business practices across the organization.
Personal data is not an abstract concept. It has a direct impact on projects, teams, and the company as a whole.
At Technology & Strategy, data protection is integrated into projects because it directly influences customer trust, partner relationships, and corporate reputation. A data incident does not only have legal consequences; it can also damage credibility and long-term business value.
This is why the DPO is involved as early as possible in projects. By working closely with developers, consultants, project managers, and support teams, data protection becomes a natural part of project design rather than an afterthought.
Experience has taught Lara that the effectiveness of data protection relies above all on communication and pedagogy. Legal concepts only become useful when they are understood by everyone.
Making the GDPR accessible means using clear language, concrete examples, and real-life situations. Awareness is not limited to a specific role or department; it concerns all employees, regardless of their position.
Data protection is therefore a collective effort, built on shared understanding and daily practices rather than on rules alone.
To move away from theory and truly grasp the importance of data protection, Lara proposes a simple but powerful approach: asking the right question.
What if it were my own data? What would be the consequences if it were lost, misused, or shared without my consent?
By placing oneself in the position of the data subject, the GDPR becomes more than a legal obligation. It becomes a matter of responsibility, trust, and respect for individuals.
With the rapid growth of artificial intelligence, cloud computing, collaborative tools, and large-scale data processing, the role of the data protection officer is evolving.
In a company like Technology & Strategy, the DPO is becoming a key player in data governance. Beyond ensuring compliance, the role contributes to strategic decision-making by helping align technological innovation with ethical and regulatory considerations.
In an increasingly complex digital environment, the DPO helps ensure that innovation remains sustainable, secure, and trustworthy.
Ultimately, Lara summarizes her role around two essential pillars: trust and compliance.
Protecting personal data means protecting individuals, but also safeguarding the company’s image, reputation, and long-term relationships with customers and partners. The DPO ensures a balance between innovation, responsibility, and regulatory compliance.
This article is based on a series of shorts videos in which Lara Weil, data protection officer at Technology & Strategy, shares her experience and practical insights into GDPR, data protection, and the DPO role.
To go further and explore these topics in a more visual and accessible format, we invite you to watch the full shorts series on our youtube channel.
Discover the role of a Data Protection Officer at Technology & Strategy: GDPR, personal data protection, DPO missions, projects, and future challenges.
READ MORE
What does it mean to become a manager for the first time? Two junior managers at T&S share their experience and key takeaways.
READ MORE
DevOps culture and DevOps audit: assess your DevOps maturity, identify risks and build strong foundations for sustainable transformation.
READ MORE
.svg){kind=icon}
.svg){kind=icon}
.svg){kind=icon}
.svg){kind=icon}
