Who Should Attend this GDPR Training Course?
This GDPR Foundation and Practitioner course is intended for:
- Information Security Professionals
- Compliance Officers
- Data Protection Officers
- Risk Managers
- Privacy Managers
- IT Security Professionals
Prerequisites
There are no pre-set formal qualifications required prior to sitting this course - it is designed for individuals looking to enhance their knowledge of GDPR and implement a compliance programme within their business.
General Data Protection Regulation Course Overview
This 4-day EU General Data Protection Regulation (GDPR) training course provides a detailed introduction to the EU GDPR, and a full overview regarding how to plan and implement a continuous compliance programme. It enables delegates to fulfil the knowledge requirements of a Data Protection Officer (DPO) – a position that is now a legal requirement in EU Organisations with a central data storage and processing function. The Knowledge Academy's GDPR course consists of the EU GDPR Foundation (two days) and GDPR Practitioner (two days) training courses.
The EU General Data Protection Regulation (GDPR) is a new directive that provides a singular data protection law for the European Union - creating a reference and basis upon which security platforms can be initiated, to prevent the loss of Personally Identifiable Information (PII) as a consequence of security breaches. The GDPR will enforce stringent data protection requirements for all organisations that possess or process PII, and/or monitor the behaviour of EU citizens. Noncompliance with the directive can and already has resulted in organisations facing substantial and financially catastrophic fines of up to 4% of their global turnover or €20 million, depending on the severity of the breach and the deemed “tier” of the offence.
The GDPR replaces the Data Protection Act and ensures that data protection laws are up to date with the “internet age” and are responsive to the ever-elevating threat of security breaches and cyber-attacks. The GPDR is prescriptive and is intended to help reassure European citizens that their personal data is safe - enhancing their confidence and interaction with online services. The regulation puts the security of EU citizens at the forefront of all processing activities - including granting individuals new legal rights concerning access and data erasure and holding organisations accountable for any obligations that they fail to adhere to. The UK is also subject to a latest version of the Data Protection Act, the DPA 2018, which complements the GDPR and features additional structures for data processing in law enforcement. The Knowledge Academy also offers a course on Law Enforcement Processing under the new DPA. For both laws, it is imperative that individuals involved in, and responsible for, data protection and processing, have a comprehensive appreciation for the meticulous details of the GDPR - obtained through undertaking this all-inclusive GDPR Foundation and Practitioner course.
The Role of a Data Protection Officer
This EU General Data Protection Regulation (GDPR) training course will guide you through the actions and responsibilities of a Data Protection Officer so you can be expertly prepared to demonstrate full compliance with the GDPR. The newly qualified GDPR DPO can be a current staff member or a contractor, however, the role must be designated based on professional qualities, and expert knowledge of data protection laws. DPOs must adhere to the GDPR requirements, as listed in Article 39:
- Inform and advise the controller or the processor and the employees who are processing personal data of their obligations pursuant to this Regulation
- Monitor compliance with this Regulation, including the assignment of responsibilities, awareness-raising, and training of staff involved in the processing operations, and the related audits
- Provide advice where requested regarding the data protection impact assessment and monitor its performance pursuant to Article 35
- Cooperate with the supervisory authority (the ICO)
- Act as the contact point for the supervisory authority on issues related to the processing of personal data