GDPR Course Library

GDPR Course for Managers

The General Data Protection Regulation (GDPR) is the law that regulates the processing of personal and special category data (previously called sensitive data) by organisations established within the European Economic Area (EEA),. The EEA includes the European Union (EU), Iceland, Liechtenstein and Norway.

The GDPR also applies to the processing of personal data of individuals residing in the EEA by organisations not established in the EEA. This means that is applies to organisations that have an operation, affiliate, branch office, or local agent or representative in the EEA. The penalties for breaching the GDPR are severe, which is why it is critical for businesses to ensure compliance.

Our GDPR Training Course provides your managers with an in-depth understanding of how to apply the six key principles of data protection, what are best practices, DPIAs and data transfers.

We also offer a similar course aimed at all employees entitled GDPR Training for All Staff.

About this Course

Available as part of our GDPR Course Library.

Learning Objectives

This course will prepare your employees to:

Know what types of data are protected under the GDPR
Explain all the rights granted to individuals under the GDPR
Take appropriate steps to deal with subject access requests
Understand the six principles of data protection
Explain your company's lawful bases for processing personal data
Take appropriate action to safeguard personal data
Spot and report any personal data breaches
Take an active role in ensuring GDPR accountability and governance

Course outline

Welcome

What is the GDPR?

- Who's responsible?

What is Personal Data?

- Special category Data

Best Practice: Personal Data

- Rights of the data subject
- Dealing with Subject Access Requests (SAR)
- You make the call: Valid SAR or not?

Best Practice: Right of Access

Best Practice: Right to Rectification

Best Practice: Right to be Forgotten

Principles of Data Protection

- You make the call: Data Protection in practice

Best Practice: Data Retention

Lawful Basis

- You make the call: What lawful basis?

Best Practice: Lawful Basis

Consent

- Do you know: How to get consent?

Best Practice: Consent

International Transfers

- You make the call: International transfers
- What does it take to transfer data?
- Transferring employee data outside the EU

Best Practice: International Transfers

Personal Data Breaches

Data Breach Notification

Best Practice: Personal Data Breaches

Accountability and Governance

Records of Processing Activity

Contracts

Data Protection by Design and Default

Data Protection Impact Assessments (DPIAs)

- You make the call: DPIAs

Best Practice and DPIAs

GDPR Penalties

- You make the call: What's the penalty?

Summary

Course Specifications

Duration

Approximately 30 mins.

Audience

Suitable for all staff - includes examples and interactivities designed for staff at all levels and best practice do's and don'ts for managers.

Prerequisites

No previous knowledge or experience required.

Design

SHARD-compliant, responsive display on all devices, accessibility on screen readers, visual design controlled via a client style sheet.

Assessment

Ten-question assessment.

Test-Out

Ability to offer optional test-out, whereby users can choose to skip the course content and complete the learning assignment simply by passing the assessment.

Microlearning

Supplementary four-minute iExpress interactive video provided to create awareness and interest in this topic.

Deployment

AICC and SCORM 1.2-compliant, suitable for both hosted and deployed SCORM or AICC.

Compatibility

All Windows, Mac OSX, iOS, Android (Flash-free for mobile compatibility).

Tailoring

Fully customisable on Skillcast Portal CMS.

Translation

Pre-translated versions not available, but all text content can be exported for translation into all languages.

Localisation

Based on UK legislation, but suitable for global audiences upon the removal of UK-specific references and translation as necessary.