Practitioner (2 full days)
- Introduction to Data Protection in Europe
- EU GDPR Basics
- EU GDPR Terminology
- Essential Data Protection Obligations
- EU GDPR Scope
- EU GDPR Principles
- Rights of the Data Subjects
- Controller and Processor
- Data Protection Officer
- International Data Transfers
- Supervisory Authorities
- Remedies, liabilities and penalties
- Opening clauses and derogations
- Major changes – DPA to GDPR
- Privacy by design
- Privacy and Electronic Communication Regulation (PECR)
- Cloud Services
- Internet of Things (IoT)
- Britain leaving EU – Considerations and impact
- Demonstrating compliance
- Planning for compliance
- Risk Management
- Setting up a programme
- Technologies
- Data protection in the digital age
Data Protection Officer (Additional 1 day)
- Overview
- Mandatory appointment
- Who can undertake the role of DPO?
- Organisational involvement of the DPO
- Primary responsibilities of the DPO
- Organisational support of the DPO
- Independence of the DPO
- DPO conflict of interest
- DPO Characteristics
- New role in organisations
- Role, obligations and position
- Relationship with management board
- Relationship with information technology
- Relationship with software / product development
- Relationship with human resources
- Obligation to maintain records
- Staff training and awareness
- Tasks of the DPO and Soft Skills required
