This Foundation level course provides a complete introduction to the Regulation, and an overview of the implications and legal requirements for organisations, including responding to individuals (data subjects) exercising their rights, DPIAs (data protection impact assessments) and data breach reporting.
The course is primarily aimed at professionals working in the field of data protection and data privacy. It is also suitable for individuals with little experience but who wish to enter the field of data protection with a professional qualification.
The GDPR (General Data Protection Regulation) provides a single, harmonised data privacy law across the EU, and Guernsey has updated its own law to reflect these new rules. All organisations need to respond to fast changing risk in this area – with cyber-attacks and poor information governance featuring heavily in recent times.
The GDPR tightens up on rules around data security and information handling and will require a comprehensive risk-based approach by all those handling personal data.
This Foundation element of the course provides a complete introduction to the EU GDPR, and an overview of the key implementation and compliance activities. Topics include:
- Bands of penalties for breaches
- Lawfulness of processing and consent
- The six data protection principles
- Special categories of personal data
- The rights of data subjects, including data access requests
- Controllers and processors
- Data protection by design
- Securing personal data
- How to perform a DPIA
- Reporting data breaches
- The DPO role
- Transferring personal data outside the EU
- Certification against the GDPR
- The powers of supervisory authorities
- Lead supervisory authorities
- The role of the EDPB (European Data Protection Board)
Who should attend this course:
Business directors or managers who want to understand how the requirements of the GDPR will affect their organisation, such as:
- Those employed in a risk or compliance department
- Information security managers
- IT managers
- Data analysts
- Project managers
- General or privacy counsels
- Individuals with a basic knowledge of data protection regulation and practices who want to develop their career with a professional qualification
Read the States of Guernsey's draft legislation document The Data Protection (Bailiwick of Guernsey) Law, 2017 (published in November 2017).
If you would rather take the online-only version of this qualification, please see GDPR Foundation & Practitioner online.
Or if you are interested in a more in-depth course on data protection, please see the GDPR five day Foundation and Practitioner.
By attending this course you will get a comprehensive introduction to the GDPR, its implications and what it means for your organisation.
You will also benefit from a comprehensive learning experience, from specialist consultants, on the GDPR (General Data Protection Regulation), developing a practical understanding of the implications and legal requirements for your organisation.
You will have attended a IBITGQ and CIISec (The Chartered Institute of Information Security) accredited, one-day training course.
Successful completion of the course and included exam leads to the ISO 17024-certificated EU GDPR Foundation (EU GDPR) qualification.
GDPR Foundation exam (end of day one).
You will take the ISO 17024-certificated EU GDPR Foundation exam set by IBITGQ (International Board for IT Governance Qualifications).
There is no extra charge for this exam.
- Duration: 60 minutes
- Questions: 40
- Format: Multiple choice
- Pass mark: 65%
The short pre-read for this course is included with your course materials and will be available 20 days before your course start date.
If you would like to book a place on this course please click on the ‘Book Course’ button to the right of this page and login or register for a user account to complete your booking(s). Any queries please do not hesitate to contact us via [email protected] or call us on 01481 224570.
If no date is scheduled for this course at the present time please click on the ‘Register Interest’ button and login or register for a user account so that we can add you to our course interest register. This register allows us to contact our tutors and finalise dates for a course as soon as we have a few people who have expressed their interest, so the more delegates who register their interest, the sooner we can schedule a particular course.