Data Protection Responsibility Assessment