Course Title: General Data Protection Regulations (GDPR) Workshop
This course is designed to provide practical guidance on the new data protection laws coming into effect in May 2018. The course will give delegates an understanding of the law and the practical actions that need to be taken within their organisation to help build their own compliance strategy.
• To be able to recognise the implications the new regulation has on your organisation • To be aware of the specific steps you need to take to comply • To understand your ongoing obligations
• An overview of the GDPR and key data protection terminology • An explanation of the principles and individuals’ rights under GDPR • Ascertaining the ‘lawful basis’ for the storage and processing of your data • Identify the ‘data processors’ you work with and the steps you must take with each of them • The new rules on how consent must be obtained and recorded • Why you may also need to consider the Privacy and Electronic Communications Regulations (PECR) • The rules associated with international data transfers • What constitutes a data breach and rules on notifying a breach to the ICO • An explanation of the differences between the GDPR and the new Data Protection Bill • The issues to be aware of across the functions within your organisation, including: o Governance, legal, staff, human resource, marketing and IT • Determining if you are required to appoint a Data Protection Officer • The ‘proportionate’ steps you need to take to comply
**Practical exercises: **
• What is data protection? • How to carry out an ‘Impact Assessment’