A named data protection contact (such as a Data Protection Officer or responsible individual) ensures there is clear accountability for how personal data is handled within your organisation.
While appointing a formal Data Protection Officer may not always be a legal requirement depending on the size and nature of your business, it is a mandatory requirement of TransUnion as part of their supplier and compliance standards for access to consumer credit data.
This helps ensure there is a clearly identified point of responsibility for data protection, which is essential for audit, security, and regulatory assurance purposes.