Description

Course Overview

The dramatic increase in the use of personal information — and the associated risks — has resulted in the introduction of global data protection regulations by European Parliament and European Council in April 2016. This course provides an understanding of new and wide-reaching requirements from the General Data Protection Regulation and those rules relevant for businesses, as well as employees’ responsibilities for protecting personal information. This is a 2-day intermediate level course, intended for audience who have general awareness of GDPR.

GDPR ADOPTION

The European Union’s General Data Protection Regulation 2018 (GDPR) is the global gold standard in the protection and management of data The GDPR is EU legislation with far reaching implications & one of the major distinctions between the GDPR & the previous legislation is that the GDPR is a regulation & not any more a directive. 

This program assists your organization for GDPR adoption; You will learn the best practices of GDPR implementation, from trainers who have decades of experience in Information Security Management, IT Service Management & Data Privacy. 

PROGRAM HIGHLIGHTS

This comprehensive program includes 3 critical aspects in terms of EU Legislation, required Organizational ecosystem & technology consideration for GDPR adoption

1. Legal basis of data protection legislation
2. Gap assessment for GDPR adoption
3. Key GDPR terminology & Roles
4. Essential GDPR adoption practices
5. Data Protection Impact Assessments (DPIA)
6. Personal data risks due to technological platforms

PROGRAM AUDIENCE

This comprehensive program is open to anyone who wants to better understand the European Union’s General Data Protection Regulation 2018 (GDPR); it is ideally suited to those in a variety of job roles including:

1. Data Privacy professionals
2. Information Security & IT professionals
3. Information System & Security Auditors
4. Compliance Officers, Legal Counsels
5. Designated Data Protection Officers
6. Senior Management / Leadership roles

THIS PROGRAM WILL HELP YOU TO UNDERSTAND

1. Required Organizational cultures for GDPR adoption
2. Roles of Data Protection Officers (DPOs)
3. Behaviour, supervision & protection of personal data
4. Legal aspects of GDPR
5. Technical aspects of handling personal data

Program Audience Level – Beginner to Intermediate 

Exam – Optional

Certificate of Attendance Awarded by – IPCERT Ltd UK 

Certificate of Course Completion Awarded by – IPCERT Ltd UK, upon scoring 70% in Exam.

PROGRAM CONTENTS

Module 1

• Application of GDPR relevant provisions in the GDPR Articles & Recitals
• Personal Data & relevant provisions in the GDPR Articles & Recitals
• Controllers & Processors roles & relevant provisions in the GDPR Articles & Recitals
• Determining Controllers & Processors
• Contracts & Liabilities between Controllers & Processors

Module 2

• GDPR Principles & Relevant provisions in the GDPR Articles & Recitals
• Lawful basis for processing & relevant provisions in the GDPR Articles & Recitals
• Consent & relevant provisions in the GDPR Articles & Recitals
• European Data Protection Board (EDPB) WP29 adopted guidelines on Consent 
• Contract & relevant provisions in the GDPR Articles & Recitals
• Legal obligation & relevant provisions in the GDPR Articles & Recitals
• Vital interests & relevant provisions in the GDPR Articles & Recitals
• Public task & relevant provisions in the GDPR Articles & Recitals & in Data Protection Act 2018
• Legitimate interests & relevant provisions in the GDPR Articles & Recitals

Module 3

• Special category data & relevant provisions in the GDPR Articles & Recitals & in Data Protection Act 2018
• Criminal offence data & relevant provisions in the GDPR Articles & Recitals & in Data Protection Act 2018
• Individual rights & relevant provisions in the GDPR Articles & Recitals

Module 4

• Accountability & Governance & relevant provisions in the GDPR Articles & Recitals
• Documentation & relevant provisions in the GDPR Articles & Recitals

Module 5

• Data Protection by Design & Default & relevant provisions in the GDPR Articles & Recitals
• Data Protection Impact Assessments & relevant provisions in the GDPR Articles & Recitals

Module 6

• Establishing Data Protection Officers & relevant provisions in the GDPR Articles & Recitals
• Codes of Conduct & relevant provisions in the GDPR Articles & Recitals
• Certification & relevant provisions in the GDPR Articles & Recitals
• Data protection fee & Personal Data breaches
• Security & Cyber Security, Encryption & Passwords in online services

Module 7

• International transfers & relevant provisions in the GDPR Articles & Recitals
• Exemptions & relevant provisions in the GDPR Articles & Recitals & in Data Protection Act 2018
• Immigration exemption

Module 8

• ISO/IEC 27701 Threats & Opportunities for GDPR Certification
• Bridging ISO 27001 to GDPR
• GDPR for Cloud Services, IoT & Cyber security
• Impact of GDPR on Artificial Intelligence
• GDPR for Drone Stakeholders
• Using ISO 29100, ISO 27018 & COBIT 5/2019 to comply with GDPR

Audience Kit – PDF of student study guide and following additional documents, mentioned below: