GDPR (GENERAL DATA PROTECTION REGULATION TRAINING)
CO URSE CO NTENT
OV ERV IEW
TRAINING EXPRESS REINVENTING TRAINING
020 8158 3412 www.trainingexpress.org.uk
The General Data Protection Regulation ( GDPR) training course provides the learner with a comprehensive understanding of new EU data protection law with information on the new rules, regulations and guidance this law introduced in 2018. The course is designed to be instructive and engaging, with each slide succinctly showing the information in bullet point format, and some case studies to demonstrate the importance of following the law. The course meets the standard to comply with the GDPR sufficiently. This course is designed for someone who works in an organisation that has possession of people’s data and wants to know how to handle it legally. MODULE ONE
INTRODUCTION In Module One, we cover the basics of the GDPR. You will learn about the foundations and reach of the GDPR, and the penalties for infringement of the legislation. We cover the aims of the GDPR as well as how the law has changed since it’s come into action. We then finish on some case studies that show why data protection is so important, especially in the cyber age. • • • • •
MODULE TWO
02
Key changes to the law. Aims of the GDPR. Knowing what the Information Commissioner’s Office is. Penalties for infringements. The importance of cyber security.
DEFINITIONS AND PRINCIPLES If they are not managed carefully, working with hazardous substances can be incredibly harmful to workers. For this reason, there are several laws in place to control exposure to these substances and prioritise your health and safety.
© 2019 Training Express all rights reserved
www.trainingexpress.org.uk
01
• Key definitions, including Data Controller, Data Subject, and Data Processor. • What fair, lawful and transparent processing is. • The purpose limitation principle. • Data minimisation. • Accuracy. • Data retention periods. • Data security. • Accountability.
MODULE THREE
03
PROCESSING, CONSENT AND SUBJECT RIGHTS In Module Three, we learn what your business needs to do to abide by the law. It explains how to obtain consent from Data Subjects, how to ensure your activities comply with the GDPR, and looks into the rights Data Subjects have.
• • • • • • • •
MODULE FOUR
04
How to comply with the law. How to process sensitive personal data. How to obtain consent. Methods of obtaining consent. The importance of a contract. The right to withdraw consent. Transferring data outside the EEA. Data subject rights.
D ATA C O N T R O L L E R A N D P R O C E S S O R O B L I G AT I O N S In Module Four, the role of the Controller is explored in more detail and their accountability to GDPR law. Furthermore, the role of the Processor is also examined in cooperation with the Controller, and the penalties they can both face from data regulation authorities.
• • • • • •
© 2019 Training Express all rights reserved
How to class an organisation as a Controller. Controller obligations. The importance of data security. The importance of reporting breaches. Processor obligations. The rules concerning cross-border data transfer.
www.trainingexpress.org.uk
02
LEARNING OUTCOMES By the end of the course learners will be able to demonstrate that they can:
• • • • •
Understand what GDPR means and its purpose. Discover how to successfully incorporate GDPR into your business. Identif y how businesses can be punished if they don’t comply with GDPR. Explore the new rights of data subjects. Learn how to process and store the sensitive personal information of your clients.
© 2019 Training Express all rights reserved
www.trainingexpress.org.uk
03
G D P R ( G E N E R A L D ATA P R O T E C T I O N R E G U L AT I O N T R A I N I N G ) T R A I N I N G
COURSE CONTENT OVERVIEW
TRAINING EXPRESS REINVENTING TRAINING
www.trainingexpress.org.uk
© 2019 Training Express all rights reserved