Responsabilità penale del Data Protection Officer e tutela transnazionale della privacy dopo il Regolamento (UE) 2016/679.

This work analyzes the role of Data Protection Officer, introducted by General Data Protection Regulation (EU) 2016/679 ("GDPR”). This kind of specialized professional had already been adopted by large companies in European Union even though it wasn’t required by the previous legislation, so it represents an important innovation not only from a legal point of view but also in the privacy culture. The Data Protection Officer is a way to implement the principle of accountability; this represents a great revolution in in designing the privacy of a company or a public office. It also represents a really intresting job opportunity for lawyers. After the review of the features of this new role in the context of the european reform, this dissertation focuses on the topic of liability for D.P.O., especially in the criminal field, according to both the European and the Italian law. Even if in this moment it seems that Data Protection Officer can’t be considererd legally responsible for data breach or other privacy-related issues, some of his features lead to another conclusion and this dissertation studies in deep this possibility: the criminal liability of the D.P.O. and the risks connected with his duties, above all, in a world where the problem of data circulation has become international.