Introduction
This three-day intensive course enables participants to develop the necessary expertise and knowledge to support an organization in implementing and Auditing data protection as specified in the GDP Requirement. Participants will also gain a thorough understanding of best practices used to appropriately protect data in compliance with the requirements of GDPR The General Data Protection Regulation (EU) 2016/679 (“GDPR”) is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA). It also addresses the export of personal data outside the EU and EEA areas. The GDPR aims primarily to give control to individuals over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.[1] Superseding the Data Protection Directive 95/46/EC, the regulation contains provisions and requirements pertaining to the processing of personal data of individuals (formally called data subjects in the GDPR) inside the EEA, and applies to an enterprise established in the EEA or—regardless of its location and the data subjects’ citizenship—that is processing the personal information of data subjects inside the EEA.
Who should attend?
- Regulatory Compliance Managers
- Data Officers, Database administrators,
- Persons using or handling personal data for their operations.
Learning objectives
- To understand the implementation of GDPR
- To gain a comprehensive understanding of the concepts, approaches, standards, methods and techniques required for the effective Data Protection in an organization
- To understand the relationship between the components of a GDPR requirements, process, including responsibility, strategy, acquisition, performance, conformance, and human behavior
- Drafting and implementing data protection strategies
Course Agenda
Day 1: Introduction to GDPR
- Overview of the fundamental principles of GDPR
- Understanding the requirements of GDPR
- Context of the Organsiation
- Risks Assessment and Data Protection Impact Analysis
- Legal and Other Requirements
- Data Protection Implementation plan
Day 2: Implementing GDPR Strategy
- Assigning roles and accountabilities
- Establishing the Data Protection System
- Procedures and processes
- Development of a training & awareness program and communicating about the Data Protection
- Implementing Data Protection operational controls
- Effectively managing changes
- Managing data protection issues
Day 3: Implementing, monitoring and evaluating GDPR performance
- Monitoring, measuring, analysis and evaluation of GDPR performance
- Evaluation of compliance with GDPR requirements
- GDPR internal audit
- Management review of GDPR Performance
- Treatment of problems and nonconformities
Examinati
|