Data Protection (GDPR) Practitioner Certificate

The training programme for Data Protection Officers, Data Protection Managers, Compliance Managers, Corporate Governance Managers or anyone with a responsibility for Data Protection.

The Data Protection (GDPR) Practitioner Certificate is ideal for you if you:

• Are already undertaking the role of Data Protection Officer
• Expect to be filling the post of Data Protection Officer in their current employment
• Are looking for employment as a Data Protection Officer
• Have, or expect to have, data protection responsibilities in their organisation
• Need to advise others on data protection compliance
• Wish to be able to demonstrate verifiable practical skills and learning in this area.

It is suitable for those working in: the public sector, the private sector and the third sector. In either case, it will teach participants essential data protection skills and in depth knowledge.

• Understand the importance of data protection legislation and compliance in the UK and beyond.
• Interpret key terminology of the UK GDPR and Data Protection Act 2018 (DPA) in a practical context
• Understand the key obligations of the UK GDPR and DPA
• Create appropriate policies and procedures necessary for data protection compliance
• Carry out a data protection audit and gap analysis
• Develop an action plan to address a data protection gap analysis
• Respond appropriately to data protection issues arising in an organisation
• Carry out the duties of a data protection officer
• Undertake accountability and risk analysis activities

Day 1

• Data Protection – history and background
• GDPR Overview
• What, really, is personal data
• Purposes & Legal Bases

Day 2

• Consent
• Special Categories of Personal Data
• Data Subject Rights
• Transparency Requirements
• Data Processors and Controllers
• Information Security Obligations
• Breach Reporting and Recording

Day 3

• Restricted (International) Transfers
• Cloud Services
• Accountability
• The Personal Data Audit & Record of Processing
• The “Accountability Portfolio”
• Data Protection by Design & Default
• Data Protection Impact Assessments
• Privacy Enhancing Technologies
• Data Protection Officers
• Direct Marketing & Cookies

Day 4

• Data Protection Act 2018
• HR Issues
• Risk Frameworks
• Data Protection Governance

Day 5

• Data Protection Audit
• Gap Analysis
• Action Plan
• Implementation
• The ICO and Enforcement
• Brexit and the future (crystal ball!)
• The European Data Protection Board (EDPB)
• Questions

The course is delivered on Zoom.

It lasts 5 days over 3 weeks, 9.30-16.30.

The advertised start date is usually a Tuesday which is the first day of the course.

The course normally continues on the Thursday of that week, Tuesday and Thursday the following week and one day in the third week:

24, 26, 31 January & 2, 7 February 2023

The one-hour test to obtain the certificate is online by arrangement in the week or two following the course.

The trainer for the course is Tim Musson, who has a Master of Laws degree in IT and Telecoms Law, is a Certified Information Privacy Professional (CIPP/E) and a Certified Information Privacy Technologist (CIPT).