GDPR Training for DPOs in the Public Sector & Civil Service
All Government Departments and Public Sector organisations must comply with the GDPR. This course shows you everything you need to be doing now to become GDPR compliant. You’ll learn exactly what GDPR is, the role of the Data Protection Officer and 10 Practical steps you can take now to implement GDPR. This course also includes our GDPR Toolkit.
For All DPOs
5 Days
Certification awarded
Online Resources
Course overview
This GDPR Training Course for Public Sector DPOs is designed to help those who have been assigned the role of Data Protection Officer in your organisation.
You’ll understand the changes you need to make in order to be compliant with the new regulation.
The General Data Protection Regulation came into effect on May 25th 2018, and all organisations that handle personal data must have robust policies and procedures in place in order to comply.
You’ll learn
- What GDPR is and why it’s important – An overview of GDPR
- Key concepts of GDPR
- 6 GDPR Principles and 18 Key Definitions
- The 8 Rights of Individuals
- Subject Access Requests
- Fines, Penalties and Compensation
- What your responsibilities are as a Data Protection Officer
- 10 Practical steps you can take now to get your organisation ready for GDPR
Requirements
No previous knowledge of GDPR is required. You’ll learn everything you need to know over the 5 days.
Certification
At the end of the course, you’ll be awarded a Certificate by the Irish Academy of Computer Training
Who would benefit
This course is recommended for all individuals in the Public Sector that have been designated the Data Protection Officer
Online Option
The course is delivered in a class environment of up to 12 people by our GDPR expert and Barrister. You will also receive access to our online GDPR Toolkit that walks you step-by-step through the actions you’ll need to take when you return to your company.
Course curriculum
Learning Theme 1: Overview of the General Data Protection Regulation (GDPR)
Provide a comprehensive overview of the GDPR and associated data protection landscape to include (but not limited to):
– Data Protection Principles
– Legal Background
– GDPR & the Data Protection Act 2018
– Meaning of Personal Data
– What constitutes lawful processing of data?
– Exercise of data subject rights
– Obligations on data controllers and data processors
– Role of supervisory authority
– Liability, compensation and sanctions
– Interaction between the GDPR and other relevant public sector obligations such as the Freedom of Information Act 2014 and the development of contracts in line with public procurement rules
– Law Enforcement Directive, now transposed into Irish law by Parts 5 and 6 of the Data Protection Act 2018
Learning Theme 2: Role of the DPO
– Informing and advising the data controller / processor and employees who carry out processing, of their obligations pursuant to the GDPR and the Data Protection Act 2018
– Monitoring compliance
– Providing advice on performing a Data Protection Impact Assessment (DPIA)
– Facilitating requests from service users wishing to exercise their rights under the GDPR
– Awareness-raising / training
– Cooperating and contact with the Data Protection Commission
– Inclusion of a ‘Train the Trainer’ element to allow participants to fulfil their obligations under Learning Theme 2 – Informing and advising the data controller / processor
Learning Theme 3: Processing of Personal Data
– Principles relating to the processing of personal data
– Establishing the lawful bases of processing
– Conditions for consent
– Conditions applicable to children’s consent
– Processing of special categories of personal data
– Recording of processing
Learning Theme 4: Rights of the Data Subject and Responding to Requests
– General obligations (Article 12)
– Privacy Notice
– Right of access by the data subject
– Right to rectification and erasure (right to be forgotten)
– Right to restriction of processing
– Right to data portability
– Right to object and automated individual decision-making, including profiling
– Restrictions of rights and principles
– Subject access requests
Learning Theme 5: Risk Assessment and Data Processing
– Responsibility of controller
– Data Protection by design and default
– Data Protection Impact Assessment (DPIA)
– Personal data breaches and notification procedures