Under GDPR, organizations must upgrade policies for data protection, the need for a data protection officer varies, and full names are considered personal data.
Organizations are required to upgrade policies and procedures to ensure data protection under GDPR. Every organization is not required to have a data protection officer; it depends on the nature and scale of data processing activities. The full name of an individual is indeed considered personal data and requires the same level of protection as identification numbers under GDPR.
https://brainly.com/question/30812316