Data breaches inevitably happen. Information gets lost, stolen or otherwise released into the hands of people who were never intended to see it — and those people often have malicious intent.
Under the terms of GDPR, not only will organisations have to ensure that personal data is gathered legally and under strict conditions, but those who collect and manage it will be obliged to protect it from misuse and exploitation, as well as to respect the rights of data owners – or face penalties for not doing so.
What is GDPR compliance?
Key Changes introduced in GDPR
✔ Fine for a breach of the GDPR can be up to 4% of the annual global turnover or EUR 20M.
✔ Applies to all data controllers and processors established in the EU and organizations that target the EU residents.
✔ DOPs to be appointed if organization conducts large amounts of sensitive personal data.
✔ Prove accountability: Establish monitoring, Minimizing data processing and retention, Document data processing policies.
✔ New obligations to data processors: data processors become an officially regulated entity
✔ A formal privacy impact assessment(PIA) with inventorization of personal information(PI) attributes in question and the data flow diagrams of PI during handling is mandatory
✔ Consumer consent to process data must be freely given. Customers must be informed of their right to withdraw their consent.
✔ Organizations must notify supervisory authority of data breaches ‘without undue delay’ or within 72 hours.
✔ Organizations should design data protection into the development of business processes and new systems.
✔ Right to be forgotten, right to data portability,right to object to profiling.
Course Objectives
• Understand the history of personal data protection in Europe.
• Gain a comprehensive understanding of the concepts and approaches required for the effective alignment with the General Data Protection Regulation.
• Understand the new requirements that the General Data Protection Regulation brings for EU organizations and non-EU organizations and when it is necessary to implement them.
• Acquire the necessary expertise to support an organization in assessing the implementation of these new requirements.
• Learn how to manage a team implementing the GDPR.
• Gain the knowledge and skills required to advise organizations how to manage personal data.
• Acquire the expertise for analysis and decision making in the context of personal data protection.
Why should you attend Certified Data Protection Officer Training?
This training will enable you to develop the necessary knowledge and skills required to develop, implement and manage a compliance framework necessary for the protection of personal data. Upon mastering the concepts of GDPR, one can attend the exam and apply for a ‘PECB Certified Data Protection Officer’ credential. This certificate enables you to understand the gap between the General Data Protection Regulation and current organisational processes, so as to implement the adoption process of the new regulation.
Who should do GDPR Certification Courses?
GDPR training and certification courses are suitable for:
• Data Protection Officers (DPOs)
• Senior marketing managers
• Professionals or individuals involved in Personal Data Protection
• Compliance officers
• Risk Managers
