Certified Data Protection Foundation

SKU: NTV-QACERTDPF

307.110 kr.

This two-day foundation course will provide a practical guide to Data Protection (GDPR) & Privacy Legislation, Information Governance and Data Protection (GDPR) implementation.

Data protection law requires, the appointment of a Data Protection Officer (DPO) for some controllers and processors, including those in the public sector. The obligations for this challenging role will require insight into threats and risks to personal data, data breach management, data protection by design and default principles, privacy compliance, and the legal spectrum of the GDPR.

This course is suitable for data protection officers, HR Professionals, compliance officers, auditors, IT & security Professionals requiring a sound knowledge of the key elements of the data protection law. There is no exam in the two-day course, those wishing to embrace the challenge of the independent exam will need to take the follow-on Certified Data Protection Practitioner course (QACERTDPP).

Forkröfur

There are no prerequisites for this course.

Target audience

This Data Protection Foundation (GDPR) course is primarily aimed at professionals working with IT, Risk, Security, Governance and Compliance roles across public and private sectors. It is also aimed at Human Resources and Marketing Professionals, Product Owners, Business Analysts and Project Managers. It is also the recommended prerequisite for the Data Protection Practitioner (GDPR) course.

Nemandi mun læra eftirfarandi

By the end of this course, learners will:

  • understand why privacy is important and how it relates to data protection.
  • have a good understanding of the data protection principles and individual rights.
  • have an in-depth understanding and knowledge of GDPR (UK and EU).
  • be able to locate important articles and recitals when necessary.

Samantekt

Module 1: Introduction to Data Protection and Privacy

By the end of the module, learners will understand:

  • the drivers for privacy and data protection.
  • the data protection framework and guiding principles (UK & EU).
  • understand key definitions.
  • Introduction to privacy & electronic communications.

Module 2: Data Protection (GDPR) Fundamentals and Principles

By the end of this module, learners will:

  • understand what GDPR covers.
  • understand the territorial and material scope of GDPR.
  • have a good understanding of GDPR definitions used throughout the regulation.
  • understand how data protection principles under GDPR.
  • understand how accountability is defined under GDPR.
  • understand what constitutes valid consent and why implicit consent is no longer compliant.
  • understand the requirements for processing special category personal data under GDPR.

Module 3: Data Protection (GDPR) Rights of the Data Subject

By the end of this module, learners will:

  • understand data subjects’ rights under GDPRs.
  • be able to understand when restriction of processing should be applied and what that entails for an organisation.
  • understand the obligations on controllers and processors to facilitate data subjects’ rights.

Module 4: Data Protection (GDPR) Controllers and Processors

By the end of this module, learners will:

  • understand the obligations on controllers.
  • understand what DP by design and default requires.
  • understand what obligations processors must comply with
  • understand the record keeping requirements that are obligated or best practice.
  • have an awareness of the obligation to keep personal data secure.
  • be able to describe the role and responsibilities of the Data Protection Officer.
  • be aware of the breach reporting requirements.

Module 5: GDPR International Transfers

By the end of this module, learners will:

  • understand the difference between EU data transfers, UK data transfers, and those to 3rd countries or international organisations.
  • understand the obligations on controllers where adequacy decisions are not in place.
  • understand the appropriate safeguards required for international transfers.

Module 6: GDPR Remedies, Liabilities, and Penalties

By the end of this module, learners will:

  • have a good understanding of the different penalty regimes.
  • be able to identify which breaches fall into the higher penalty regime and which fall to the lower regime.
  • understand that other penalties and remedies may be incurred in cases of a breach.

Module 7: GDPR Supervisory Authorities, Cooperation, and Specific Situations

By the end of this module, learners will:

  • be aware of the Supervisory Authority powers.
  • understand specific provisions for other processing.

Module 8: Privacy in the workplace CCTV & Surveillance

By the end of this module, learners will:

  • understand privacy in the workplace.
  • discuss the link to CCTV & Surveillance.

Exams and assessments

There is no exam included in this foundation course. Learners seeking certification can progress to the Certified Data Protection Practitioner course, which prepares participants for an independent examination.

Hands-on learning

Learners participate in discussions, review questions, and practical reviews of GDPR concepts to reinforce understanding of rights, responsibilities, and compliance requirements. The course emphasises the application of legislative principles to real organisational contexts.