Data Protection Practitioner (GDPR) course

Continue your learning with this in depth course, covering the major elements of data protection and GDPR.

This course provides a comprehensive understanding of key data protection topics, including:

• Data Subject Access Requests (DSARs) and applicable exemptions
• Data breach policies and response procedures
• The role, powers, and sanctions of Supervisory Authorities
• Data Protection Impact Assessments (DPIAs), including when they are necessary and how to conduct them

The course will cover the following laws:

• General Data Protection Regulation (GDPR)
• Data Protection (Jersey) Law 2018
• UK GDPR
• Data Protection Act 2018 (UK)

We will highlight and explain any differences between these laws. We begin with a concise review of GDPR, focusing on its principles, data subject rights, data transfers, and overall compliance.

This intensive two-day course is designed to provide practical insights into data protection compliance.

Day 1:

• Understand GDPR in the context of EU law.
• Recognise the consequences of GDPR non-compliance.
• Learn about the key legislation surrounding data breaches.
• Understand exemptions under the Data Protection Act 2018 and your responsibilities.
• Explore the role of the Data Protection Officer (DPO) in protecting data subjects’ rights, particularly regarding confidentiality.
• Understand the authority of the Information Commissioner’s Office (ICO).
• Gain a clear understanding of GDPR principles and the DPO’s role in enforcing them.
• Learn how to establish and demonstrate compliance.
• Deepen your understanding of Subject Access Requests (SARs) and related legal frameworks.
• Review key court cases relevant to SARs.
• Understand what constitutes a reasonable search for data.
• Define personal data and the role of filing systems, including manual systems.
• Explore exemptions, when to apply them, and how to refuse a SAR.
• Understand terms such as “manifestly unfounded,” “excessive,” and “reasonable period.”
• Learn how to handle refusals and navigate exemptions when processing a SAR.

Day 2:

• Gain an understanding of the ethical and legal motivations behind data breaches and GDPR.
• Explore the principles underpinning GDPR.
• Learn to identify what constitutes a data breach.
• Understand the process of determining when, who, and why a data breach has occurred.
• Develop skills to manage data breaches effectively.
• Identify the key elements and advantages of a robust data breach policy.
• Review the procedure for handling data breaches.
• Learn how to document compliance using Propelfwd’s Data Breach Policy.
• Understand the role and enforcement powers of Supervisory Authorities.
• Gain practical knowledge of conducting Data Protection Impact Assessments (DPIAs).

Each main topic will conclude with a short exam requiring a 60% pass mark.

By the end of the course, you will have the knowledge and practical skills to be a valuable member of any data privacy compliance team.