General Data Protection Regulation (GDPR) Compliance Training
On May 2018 the EU’s GDPR (General Data Protection Regulation) becomes enforceable, carrying fines of up to 4% of global annual turnover or €20 million, whichever is greater. In response to this on August 7th 2017 the UK’s Department for Digital, Culture Media & Sport announced its statement of intent for the Data Protection Bill (DPB) which will comply with the GDPR in full, thus ensuring that Brexit will have no effect on data privacy and responsibility.
This course aims to discuss both the GDPR and DPB within the context of what it means to your business. We will offer clear guidance and step by step actions of what is necessary to comply with the GDPR, while minimising impact on the day to day operations of your organisation.
Developed in collaboration with data privacy consultants and university academics, the course is designed to inform of the regulations and the potential pitfalls, in an engaging, dynamic and interactive learning environment. We utilise the Socrative (voting platform) and other interactive technologies to engage with you throughout the course. GDPR compliance is not a “one size fits all” process, so break out and group discussion sessions are included to ensure that the lessons are placed in a meaningful context of your individual business needs
The course is delivered by industry practitioners well versed in helping companies become GDPR, ISO 27001 and cyber essentials compliant. We cover all the key elements of the GDPR regulation to ensure you fully understand the steps and approaches your company needs to become GDPR compliant. We focus on providing practical approaches which can be easily implemented.
The course will cover the below points:
- Requirements of the GDPR
- Risk Assessment
- Privacy Impact Assessments
- Data Protection Officer (DPO) – What the role of a DPO is
- Data subject and data access requests
- Privacy and Security by Design
- How does the GDPR compare with the DPA (Data Protection Act)
- How the Data Protection Bill will differ from the GDPR
- Incident Response and handling
- A road map to make your organisation GDPR compliant
Due to the GDPR the way we do sales, marketing and data processing is about to change forever. Did you know you could be violating the GDPR if you do not?
- Have clear consent for ALL personal data stored or processed by your organisation
- Stop using mailing lists containing personal data you do not have explicit consent to use
- Understand the GDPR applies to you regardless of whether you target customers using personal data or not
- Realise “opt out” consent is NOT consent when processing personal data
- Send updated information to your data subjects before May 25th, 2018
- Stop profiling customers via cookies or other trackers without explicit consent
- Notify the ICO within 72hrs of a data breach
- Employ a suitably qualified Data Protection Officer monitoring your compliance
Is this going to affect your business?
All course notes and a GDPR compliance toolkit is provided.