Course information

Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course Outline

Module 1: Data Subject Rights

  • Must I Always Obey a Right?
  • Rights and Third Parties
  • Requests Made on Behalf of Other Data Subjects
  • Guidelines for Children's Maturity
  • Responding to a Rights Request
  • What is a Month?
  • Rights Request Flow Chart
  • Right to be Informed
    • When Should Information Be Provided?
    • Best Practice Guidance
  • Right of Access
  • Right to Rectification
  • Right to Erasure
    • When can I Refuse to Comply with a Request for Erasure?
    • Erasing Children's Data
  • Right to Restrict Processing
    • When Processing Should be Restricted?
    • Protecting PII
    • Other Issues about Restricting Processing
  • Right to Data Portability
  • Right to Object
    • Complying with the Right to Object
    • Rejecting the Right to Object
    • Processing for Direct Marketing Purposes
    • Processing for Research Purposes
  • Rights Related to Automated Decision Making and Profiling
    • When does the Right not apply?

Module 2: Subject Access Requests

  • Provenance
  • Overview: SARs
  • SAR is an Activity, Not a Title
  • How can a SAR be Submitted?
  • What Information Should the Response to a SAR Contain?
  • Additional Information
  • Replying to a SAR
  • Confirming a Data Subject’s Identity
  • Scope
  • Electronic Records
  • Non-Electronic Records
  • SARs Involving 3rd Party PII
  • Fees
  • Refusing a Subject Access Request
  • Access Requests from Employees
  • Credit Reference Agencies
  • Best Practice for SARs

Module 3: Lawful Processing

  • Lawful Processing: A Reminder
  • User Rights Change Depending on the Justification
  • Lawfulness of Processing Conditions
  • Lawfulness for Special Categories of Data
  • UK ICO Tool
  • Consent
  • Key Points About Consent
  • Affirmative Action and Explicit Consent
  • Introduction of Affirmative Action
  • What is Not Affirmative Action?
  • Examples of Affirmative Action from the ICO
  • Introduction of Explicit Consent
  • Explicit Statement
  • Obtaining Explicit Consent
  • ICOs View of a Poor Form of Explicit Consent
  • Obtaining Consent for Scientific Research Purposes
  • Getting Consent
  • What Should Go into the Consent Request?
  • Consent Granularity
  • Right to Withdraw Consent
  • Children
  • Consent Records
  • ICOs Examples of Record Keeping
  • Key Points When Establishing Consent
  • Legitimate Interests
  • Getting the Balance Right
  • Consent or Legitimate Interest?
  • What Lawful Basis Can be Used for Processing Marketing PII?

Module 4: Third Country Data

  • Cross Border Transfers
  • Transfer Mechanisms
  • Derogations
  • Adequacy
  • Adequate Ways to Safeguard Transfers of PII
  • Consent
  • One-Off or Infrequent Transfers
  • Who is Responsible?
  • Transferring PII Between EEA Members
  • Adequate Countries Outside of the EEA
  • Binding Corporate Rules (BCR)
  • What a BCR Must Cover?
  • Authorisation for BCRs
  • EU-US Privacy Shield
  • Privacy Shield Overview
  • Privacy Shield: Mechanics
  • Model Clauses
  • Public Authority Agreements

Module 5: Introduction to Protecting Personal Data

  • Need to Secure
  • What is Appropriate?
  • Protecting PII – 3 Key Areas
  • Coverage
  • Defensive Design
  • Single Point of Failure (SPOF)
  • Incident Response
  • Data Breach Reporting Requirements
  • Incident Response Team

Module 6: Data Protection Impact Assessments (DPIA)

  • Introduction
  • What Triggers a Data Protection Impact Assessment?
  • Cases Where DPIA is Not Required
  • Benefits of DPIA
  • Processes to be Considered for a DPIA
  • Responsibilities
  • DPIA Decision Path
  • DPIA Content
  • How Do I Conduct A DPIA?
  • Signing Off the DPIA
  • Mitigating Risks Identified by the DPIA

Module 7: Need Want Drop

  • Overview
  • Need-Want-Drop: Concept Diagram
  • Need-Want-Drop: Categorising Data
  • Need/Want/Drop Methodology

Module 8: Dealing with Third Parties and Data in the Cloud

  • What is Cloud Computing?
  • Myths of Cloud
  • Cloud Challenges
  • Controller-Processor Contract
  • Checklist
  • Data Controller - Summary

Module 9: Practical Implications: GDPR

  • Brexit and its Impact on the GDPR
  • Adequacy
  • What does this Mean in Practice?
  • EU and UK Representatives
  • Exemption Rule
  • One-Stop Shop

Module 10: Legal Requirements of the GDPR

  • Lawful, Fair, and Transparent Processing
  • Limitation of Purpose, Data and Storage
  • Data Subject Rights
  • Consent
  • Personal Data Breaches
  • Privacy by Design
  • Data Protection Impact Assessment
  • Data Transfers
  • Data Protection Officer
  • Awareness and Training

Module 11: Privacy Principles in GDPR

  • Lawfulness, Fairness, and Transparency
  • Purpose Limitation
  • Data Minimisation
  • Accuracy
  • Storage Limitation
  • Integrity and Confidentiality

Module 12: Common Data Security Failures, Consequences, and Lessons to be Learnt

  • Common Data Security Failures
  • Consequences
    • Fines Relating to Data Breaches
    • Litigation from Customers Relating to Data Breaches
    • Directors, Officers, and Professional Advisors
    • Reputational Damage
  • Lesson Learned
    • Knowing When and How to Communicate with Affected Individuals is Not Easy
    • GDPR is Important, as are Other Legal Frameworks

Show moredowndown

Who should attend this Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course?

The Certified EU GDPR Practitioner Course goes a step beyond the foundational principles provided in the GDPR Foundation course. It is designed to give professionals a more detailed insight into the GDPR. This course can be beneficial to a variety of professionals, including:

  • Data Protection Officers
  • IT Security Managers
  • Legal Counsel & Compliance Lawyers
  • Senior HR Managers
  • Risk and Compliance Managers
  • Chief Information Officers (CIOs)
  • Digital Marketing Directors
  • Database and System Administrators

Prerequisites of the Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course

There are no formal prerequisites required for the Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course.

Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course Overview

The EU General Data Protection Regulation (GDPR) represents a comprehensive set of laws that oversee the handling of personal data within the European Union. It is crucial to establish technical and organisational safeguards to safeguard data. Pursuing this GDPR Training equips individuals with the expertise and capabilities necessary to ensure that their organisations adhere to GDPR regulations. This training also enables learners to grasp the significance of assessing GDPR compliance and making adjustments to maintain ongoing adherence. Undertaking this training empowers individuals with the essential skills and methods to improve their professional prospects and ultimately boost their income as well.

The EU GDPR Practitioner Course is designed for individuals seeking a deeper and practical understanding of the General Data Protection Regulation (GDPR) within the European Union context. This advanced course delves into the intricacies of GDPR implementation, compliance strategies, and how to effectively manage data protection within an organisation. Participants learn to conduct Data Protection Impact Assessments (DPIAs), manage data breaches, and develop and maintain GDPR-compliant policies and procedures.

In this two-day EU GDPR Training for practitioners, participants will acquire an in-depth understanding of managing personal data within the European Union. Throughout the course, attendees will be equipped to stay current with evolving GDPR standards, adjusting policies and procedures as necessary. Furthermore, they will gain proficiency in GDPR and the competencies essential for ensuring adherence within their respective organisations. This training will be led by our  experienced and highly professional trainers , boasting years of teaching expertise.

Course Objectives

  • To understand the rights of data subjects and how to handle their requests
  • To learn how to conduct a Data Protection Impact Assessment (DPIA)
  • To develop and implement effective data protection policies and procedures
  • To know the importance of continuous improvement in GDPR compliance
  • To gain knowledge of how to handle data subject requests and complaints
  • To provide a clear explanation of why and how you are processing AI

At the end of this course, delegates will be able to develop and implement effective data protection policies. They will also be able to identify and assess the risks associated with the processing of personal data.

Show moredowndown

What’s included in this Certified EU General Data Protection Regulation (EU GDPR) Practitioner Course?

  • Certified EU General Data Protection Regulation (EU GDPR) Practitioner Examination
  • World-Class Training Sessions from Experienced Instructors
  • Certified EU General Data Protection Regulation (EU GDPR) Practitioner Certificate
  • Digital Delegate Pack

EU GDPR Practitioner Exam Information

To achieve the Certified EU General Data Protection Regulation (EU GDPR) Practitioner, candidates will need to sit for an examination. The exam format is as follows: 

  • Question Type: Multiple Choice 
  • Total Questions: 30 
  • Total Marks: 30 Marks 
  • Pass Mark: 57%, or 17/30 Marks 
  • Duration: 90 Minutes
  • Open Book/ Closed Book: Closed Book

Why choose us

Our Reykjavik venue

Includes..

Free Wi-Fi

To make sure you’re always connected we offer completely free and easy to access wi-fi.

Air conditioned

To keep you comfortable during your course we offer a fully air conditioned environment.

Full IT support

IT support is on hand to sort out any unforseen issues that may arise.

Video equipment

This location has full video conferencing equipment.

Reykjavik is the capital and largest city of Iceland and world’s northernmost capital of a sovereign state. Whilst Iceland has a population of approximately 329 thousand, the Reykjavik city has a population of around 121 thousand people. The Icelandic education system uses policies and methods controlled by the Ministry of Education, Science and Culture and they issue the National Curriculum Guidelines. The education system consist of four level (Playschool, Compulsory, Upper Secondary and Higher), where the playschools, primary schools, and lower secondary schools are funded and administered by the municipalities. Compulsory education comprises primary and lower secondary education. Upper secondary is not compulsory but everyone has the right to it. The University of Iceland has the largest seat of students, which is located in central Reykjavik. Reykjavik also has Reykjavík University, which is the largest private university in Iceland with over 3000 students. In Reykjavík there are 10 secondary school and 3 universities which include Iceland Academy of the Arts, Reykjavík University and The University of Iceland.

Show moredown

Address

Bergstadastraeti 37,
Reykjavik 101,
Iceland

T: +44 1344 203 999

Ways to take this course

Experience live, interactive learning from home with The Knowledge Academy's Online Instructor-led Certified EU General Data Protection Regulation (EU GDPR) Practitioner Training in Reykjavik. Engage directly with expert instructors, mirroring the classroom schedule for a comprehensive learning journey. Enjoy the convenience of virtual learning without compromising on the quality of interaction.

Unlock your potential with The Knowledge Academy's Certified EU General Data Protection Regulation (EU GDPR) Practitioner Training in Reykjavik, accessible anytime, anywhere on any device. Enjoy 90 days of online course access, extendable upon request, and benefit from the support of our expert trainers. Elevate your skills at your own pace with our Online Self-paced sessions.

Experience the most sought-after learning style with The Knowledge Academy's Certified EU General Data Protection Regulation (EU GDPR) Practitioner Training in Reykjavik. Available in 490+ locations across 190+ countries, our hand-picked Classroom venues offer an invaluable human touch. Immerse yourself in a comprehensive, interactive experience with our expert-led Certified EU General Data Protection Regulation (EU GDPR) Practitioner Training in Reykjavik sessions.

best_trainers

Highly experienced trainers

Boost your skills with our expert trainers, boasting 10+ years of real-world experience, ensuring an engaging and informative training experience

venues

State of the art training venues

We only use the highest standard of learning facilities to make sure your experience is as comfortable and distraction-free as possible

small_classes

Small class sizes

Our Classroom courses with limited class sizes foster discussions and provide a personalised, interactive learning environment

value_for_money

Great value for money

Achieve certification without breaking the bank. Find a lower price elsewhere? We'll match it to guarantee you the best value

Streamline large-scale training requirements with The Knowledge Academy's In-house/Onsite at your business premises. Experience expert-led classroom learning from the comfort of your workplace and engage professional development.

tailored_learning_experience

Tailored learning experience

Leverage benefits offered from a certification that fits your unique business or project needs

budget

Maximise your training budget

Cut unnecessary costs and focus your entire budget on what really matters, the training.

team_building

Team building opportunity

Our offers a unique chance for your team to bond and engage in discussions, enriching the learning experience beyond traditional classroom settings

monitor_progress

Monitor employees progress

The course know-how will help you track and evaluate your employees' progression and performance with relative ease

What our customers are saying

Certified EU General Data Protection Regulation (EU GDPR) Practitioner Training in Reykjavik FAQs

The EU General Data Protection Regulation (GDPR) is a comprehensive data privacy law that protects EU citizens' personal data. It sets strict guidelines for data collection, storage, and usage, promoting transparency and security, and applying to organisations worldwide that process EU data.
The GDPR is crucial as it safeguards individual privacy rights, ensuring that personal data is handled responsibly. By enforcing compliance, it builds trust between organisations and consumers, boosting data security and strengthening customer relationships in today's digital economy.
There are no formal prerequisites required for the Certified EU General Data Protection Regulation (EU c) Practitioner Course.
This course takes 2 days to complete during which delegates participate in intensive learning sessions that cover various course topics.
Yes, The Knowledge Academy offers 24/7 support via phone & email before attending, during, and after the course. Our customer support team is available to assist and promptly resolve any issues you may encounter.
The GDPR Practitioner Course provides in-depth knowledge of compliance and data protection strategies, enhancing career prospects in data privacy roles. It equips you to lead GDPR initiatives, ensuring organisational compliance and adding value to your professional profile.
In this course, you’ll gain in-depth knowledge of GDPR principles, compliance requirements, and data protection practices. You’ll also learn how to conduct data audits, manage data processing agreements, and ensure ongoing compliance, equipping you with essential skills for effective GDPR management.
Yes, after completing this course you will receive a certificate of completion to validate your achievement and demonstrate your proficiency in the course material.
This training course provides hands-on expertise in GDPR compliance, enhancing your data protection skills and career opportunities in privacy-focused roles. You'll gain practical knowledge to manage data privacy effectively, ensure organisational compliance, and boost your professional credibility in a rapidly growing field.
The Knowledge Academy provides flexible self-paced training for this course. Self-paced training is beneficial for individuals who have an independent learning style and wish to study at their own pace and convenience.
Yes, we provide corporate training for this course, tailored to fit your organisation’s requirements.
If you face any issues in accessing the course materials, then you can reach out to our customer support team who will provide you with quick assistance to resolve the issue.
Completing GDPR Practitioner Training opens up roles like Data Protection Officer, GDPR Consultant, Compliance Specialist, and Privacy Manager. These roles are increasingly in demand as organisations prioritise data protection, making this training valuable for advancing in data governance fields.
For additional resources, you can explore the official EU GDPR website, publications by data protection authorities, and articles from trusted privacy organisations. The Knowledge Academy also offers advanced GDPR courses and materials to support continued learning.
Ongoing GDPR compliance can be maintained through regular data audits, employee training, and reviewing data handling practices. Appointing a Data Protection Officer and keeping policies updated also help organisations adapt to any changes in data protection regulations.
GDPR enforces strict guidelines on managing employee data, requiring companies to protect and only use it for lawful, specified purposes. This ensures transparency, gives employees control over their personal information, and improves trust within the organisation.
A Data Processing Agreement (DPA) is a contract that ensures compliance with GDPR when a company shares personal data with a third party. It outlines both parties' data handling responsibilities, safeguarding personal data and ensuring accountability in processing activities.
It’s recommended to conduct GDPR training annually to ensure that all employees stay updated on data protection practices. Regular training sessions also reinforce GDPR compliance within the organisation, adapting to any updates in regulations or data management practices.
The Knowledge Academy in Reykjavik stands out as a prestigious training provider known for its extensive course offerings, expert instructors, adaptable learning formats, and industry recognition. It's a dependable option for those seeking this course.
The training fees for Certified EU General Data Protection Regulation (EU GDPR) Practitionerin Reykjavik starts from €1995
The Knowledge Academy is the Leading global training provider for Certified EU General Data Protection Regulation (EU GDPR) Practitioner.
Please see our GDPR Training courses available in Reykjavik
Show more down

Why choose us

icon

Best price in the industry

You won't find better value in the marketplace. If you do find a lower price, we will beat it.

icon

Many delivery methods

Flexible delivery methods are available depending on your learning style.

icon

High quality resources

Resources are included for a comprehensive learning experience.

barclays Logo
deloitte Logo
Thames Water Logo

"Really good course and well organised. Trainer was great with a sense of humour - his experience allowed a free flowing course, structured to help you gain as much information & relevant experience whilst helping prepare you for the exam"

Joshua Davies, Thames Water

santander logo
bmw Logo
Google Logo
backBack to course information

Get a custom course package

We may not have any package deals available including this course. If you enquire or give us a call on +44 1344 203 999 and speak to our training experts, we should be able to help you with your requirements.

cross

BIGGEST
Christmas SALE!

red-starWHO WILL BE FUNDING THE COURSE?

close

close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.

close

close

Press esc to close

close close

Back to course information

Thank you for your enquiry!

One of our training experts will be in touch shortly to go overy your training requirements.

close close

Thank you for your enquiry!

One of our training experts will be in touch shortly to go over your training requirements.