Stay updated on our activities
Data Protection: Refresher and Advanced Course for DPOs and Data Protection Experts
This Refresher and Advanced Course for DPOs and Data Protection Experts course will provide you with substantial and valuable knowledge in the field of data protection.
We believe in constantly updating professional knowledge, particularly in the field of data protection. The field of data protection is experiencing unprecedented challenges due to the constant emergence of new technologies and innovative applications of personal data. As such, maintaining up-to-date expertise through ongoing education is not merely beneficial, but essential for data protection professionals.
The data protection officer (DPO) is a key element of accountability in every organisation as required by the General Data Protection Regulation (GDPR) And Regulation 2018/1725 (EUDPR). However, the expectations and knowledge required for the DPO are multifaceted. That requires not only mastering the GDPR or the EUDPR, but also being familiar with the new EU digital regulations that build on and are complementary to the data protection legislation, like AI Act, Digital Service Act and Digital Markets Act, as well as practical aspects of the more and more challenging topic of ensuring secure personal data processing and responding to data breaches.
This is why a multifaceted approach in delivering this Refresher and Advanced Course for DPOs and Data Protection Experts course is paramount. Experts and practitioners at the forefront of EU data protection and EU digital policy will guide you along the legal framework of the European data protection legislation and EU digital regulations, while elaborating on some of the most pressing data protection-related issues that have emerged in the current digital transformation shift and undoubtedly covering current topics and challenges that DPOs are facing nowadays.
This course is designed to help you to refresh and update your data protection knowledge. Concrete examples regarding the data protection legislative framework, analysis of the new CJEU case law, guidelines from the European Data Protection Supervisor (EDPS) and European Data Protection Board, as well as relevant and realistic case studies will help you to refine your expertise and deepen your understanding of your duties and responsibilities. You will be able to benefit from the knowledge of the trainers to support the performance of your daily tasks, make it easier to deal with challenging and complex issues in a structured way, and take decisions that are pragmatic, but still compliant.
Successful completion of this course will renew your DPO certification.
You will learn:
- How to deal with controllers’ expectations and manage diverging objectives in the business environment (stakeholder management);
- How to understand the interplay between GDPR and other EU digital legal frameworks.
- How to ensure data protection by design and by default in a fast-changing digital and legal environment;
- How to assess data protection compliance and how it is interlinked with IT security;
- Risk analysis and management;
- How to assess issues related to personal data transfers;
- What actions to take in case of personal data breaches;
- How to implement organisational and security controls.
Course methodoloy
We believe that practical know-how is the key to effective learning. This course therefore includes:
- Individual preparation for the course – you are invited to bring along any information about the mission, vision, values and data protection (GDPR and EUDPR) framework and governance within your organisation for case study;
- Group and individual assignments;
- Practical exercises on DPO roles and responsibilities;
- An interactive approach: the module’s structure will give you the opportunity to ask questions and share and discuss experiences, knowledge, needs and challenges with the trainers and other participants;
- There will be time for note-taking on what you learn, so you can apply it to your own situation.
You will be able to:
- facilitate the development of an effective data protection strategy and plan;
- be aware about the latest legal and case law developments.
- draft specific policies and procedures;
- manage data breaches;
- ensure data protection compliant transfers of personal data;
- define the pragmatic approaches to ensure GDPR/EUDPR compliance within your organisation;
- support your organisation in identifying gaps to be addressed in view of GDPR/EUDPT compliance;
- advise your organisation on how to manage personal data;
- support a data protection communication and training plan;
- develop your professional international network in the field of data protection.
After taking this course, you can join EIPA’s dedicated community of practice together with former participants. You will also have access to the course materials for three months after the course.
- Managers and DPOs exposed to questions related to data protection and the management of the related risks, plans and solutions;
- Data protection experts and advisors;
- Research and educational administrators.
- Certified DPOs;
- Anyone in the public or private sector who is responsible for their organisation’s compliance with the GDPR and EUDPR.
Project number: 2511504
Hybrid course
Experience our course in a way that suits you best! This hybrid course offers the flexibility to join in-person or online through a live stream. In the registration form, you will have the opportunity to select your preferred option.
Face to Face venue
European Institute of Public Administration (EIPA)
O.L. Vrouweplein 22
6211 HE, Maastricht
The Netherlands
Senior Project Officer
Ms Eveline Hermens
Tel: +31 43 3296259
e.hermens@eipa.eu
Fee
The fee includes documentation and refreshments, lunches, and a dinner. Accommodation and travel costs are at the expense of the participants or their administration.
Discounts
EIPA member fee
EIPA offers a discount to all civil servants working for one of EIPA’s supporting countries, and civil servants working for an EU institution, body or agency.
Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Romania, Spain, Sweden.
For all other participants, the regular fee applies.
Loyalty coupon
As a token of appreciation we offer all our participants a loyalty coupon for one of our future courses. The offer can be shared with colleagues and relevant networks. The coupon will expire one year after its release. This discount is not cumulative with other discounts, except for the EIPA member fee.
Meals
Dietary preferences can be indicated on the registration form.
Hotel reservations
EIPA has special price arrangements with a number of hotels. The hotels are within walking distance from EIPA. If you wish to take advantage of this option, please click on the hotel name to book directly using the link. Payment is to be made directly and personally to the hotel upon checking out.
- Eden Design Hotel
designhotel@edenhotels.nl
+31 (0)43 328 25 25 - Townhouse
info@townhousehotels.nl
+31 (0)43 323 30 90 - Mabi
info@hotelmabi.nl
+31 (0)43 351 44 44 - Derlon
info@derlon.com
+31 (0)43 321 67 70 - Kaboom Hotel
info@kaboomhotel.nl
+31 (0)43 325 33 40
Confirmation
Confirmation of registration will be forwarded to participants on receipt of the completed online registration form.
Payment
Prior payment is a condition for participation.
Cancellation policy
For administrative reasons you will be charged €150 for cancellations received within 15 days before the activity begins. There is no charge for qualified substitute participants. EIPA reserves the right to cancel the activity up to 2 weeks before the starting date. In that case, registration fees received will be fully reimbursed. EIPA accepts no responsibility for any costs incurred (travel, accommodation, etc.).
A few days before the start of the course you will receive the log-in details for accessing the course materials. You can log in here.
I have a question
Our experts
Programme
08.30 | Registration of participants / opening of the online platform |
09.00 | Welcome: objectives of the course Florina Pop, Senior Expert/Data Protection Expert, EIPA, Maastricht (NL) |
09.15 | The interplay between the EU AI Act and the GDPR: present and future challenges for Data Protection Officers in the era of Artificial Intelligence Zoe Kardasiadou, DG Just, European Commission, Brussels (BE) TBC |
10.15 | Q&A |
10.30 | Coffee Break |
11.00 | Creating a safer online space: the interplay between the GDPR and the DSA Speaker TBC |
12.00 | Q&A |
12.15 | Lunch break at Hotel Derlon |
13.45 | Technological Trends and New Supervision Strategy Gijs de Haan, Senior Adviseur Toezichtstrategie, Dutch Data Protection Authority TBC |
14.45 | Q&A |
15.00 | Coffee Break |
15.30 | Data Processing Agreements, Contracts and Transfers of Personal Data Dr. Carlo Piltz, Lawyer/Partner at Piltz Legal, Berlin (DE) |
16.30 | Workshop on Data Processing Agreements & Contracts (with transfer of data) Dr. Carlo Piltz |
17:15 | Q&A |
17.30 | End of the day |
08.45 | Opening of the online platform |
09.00 | Hands-on Exercise (interactive workshop) Gloria Folguera Ventura, DPO, EUIPO, Cristobal Lander Rodriguez, Deputy DPO, EUIPO & Emma Rodriguez Montes, Data Protection Specialist in the Data Protection Office, EUIPO, Alicante (ES) |
11.00 | Coffee Break |
11.30 | Data Protection Risk Framework: Evaluation and Control inside your Organisation Gloria Folguera Ventura |
12.15 | Q&A |
12.30 | Lunch break at EIPA’s restaurant |
13.45 | Tips and tricks for successfully completing a DPIA (interactive workshop) Emma Rodríguez Montes TBC |
14.30 | Q&A |
14.45 | Coffee Break |
15.15 | Personal Data Outside the EU: How to conduct a Data Transfer Impact Assessment (DTIA) (interactive workshop) Nayra Perez, Data Protection Officer, Frontex (PL) TBC |
16.30 | Q&A |
17.00 | End of the day |
19.00 | Dinner at a Restaurant in Maastricht |
08.45 | Opening of the online platform |
09.00 | Respond to Data Subject’s Rights: Practical Approaches (interactive workshop) Adriana Minovic, Group Director of Data Protection, Ergomed, Belgrade (SRB) TBC |
10.00 | Q&A |
10.15 | Coffee break with Limburg treat |
10.45 | Recent Relevant Case Law for Data Protection Officers Dr Florin Coman-Kund, Senior Expert in EU Governance, EIPA, Maastricht (NL) |
11.45 | Q&A |
12.00 | Cookies, pixels and other identifiers: Application of Article 5.3 of the ePrivacy Directive Rosa Barcelo, Global Privacy and Cybersecurity Partner McDermott Will & Emery, Brussels (BE) |
13:00 | Q&A |
13.15 | How to Audit an ICT Provider – a Methodology (interactive workshop) Brian Honan, Director, BH Consulting, Dublin (IE) |
14.15 | Concluding Remarks |
14.30 | End of the course (Take-away lunch) |