Data Protection: Refresher and Advanced Course for DPOs and Data Protection Experts

The course Data Protection: Refresher and Advanced Course for DPOs and Data Protection Experts and Hands-on Module will allow you to immerse yourself in one week solely dedicated to data protection issues. These two modules will provide you with substantial knowledge in the field of data protection as well as practical knowledge on how to apply it, in the form of interactive workshops.

You can choose to book only:

• Data Protection: Refresher and Advanced course for DPOs and Data Protection Experts – if you want to renew your DPO certification
• Data Protection: Hands-on module – if you do not want to renew your DPO certification but only want to complement your knowledge with practical ‘on the job’ workshops

Module 1 – Refresher and Advanced Course for DPOs and Data Protection Experts (27-29 March)

We believe in constantly updating professional knowledge, particularly in the field of data protection. In a time of unprecedented challenges posed by ever-evolving technologies and different ways to use personal data, continuous learning and updating your expertise is crucial.

The data protection officer (DPO) is a key element of accountability in every organisation as required by the General Data Protection Regulation (GDPR) And Regulation 2018/1725 (EUDPR). However, the expectations and knowledge required for the DPO are multifaceted. That requires not only mastering the GDPR or the EUDPR, but also being familiar with practical aspects of ensuring secure personal data processing and responding to data breaches.

This is why a multifaceted approach in delivering this Refresher and Advanced Course for DPOs and Data Protection Experts course is paramount. Experts and practitioners at the forefront of data protection will guide you along the legal framework of the European data protection legislation, while elaborating on some of the most pressing privacy-related issues that have emerged in the context of the pandemic.

This course is designed to help you to refresh and update your data protection knowledge. Concrete examples regarding the data protection legislative framework, analysis of the new CJEU case law, guidelines from the European Data Protection Supervisor (EDPS) as well as relevant and realistic case studies will help you to refine your expertise and deepen your understanding of your duties and responsibilities. You will be able to benefit from the knowledge of the trainers to support the performance of your daily tasks, make it easier to deal with challenging and complex issues in a structured way, and take decisions that are pragmatic, but still compliant.

Module 2 – Hands-on Module (30-31 March)

User-generated data and the exponential industrial value of data is increasing every day. Therefore, putting together a formal set of data protection policies and procedures is essential, regardless of the size of your company or the sector it operates within. This significant step in data protection compliance is crucial to ensuring your business is built to protect the information you process on employees, customers, partners and all other parties whose data may come into your possession. Lastly, it is crucial to put in place safeguards after experiencing a data breach.

Do you need practical knowledge on how to deal with data protection related issues? Are you in doubt about how to implement requirements set out in the GDPR or EUDPR in your organisation? Do you have the knowledge but lack practical experience in the data protection field?

This course is designed to provide practical, hands-on experience to complement your existing knowledge in the field of data protection. The hands-on module is primarily focused on enhancing the day-to-day work of DPOs and anyone working in the field of data protection. You will benefit from the trainers’ knowledge and practical experience by participating in the interactive workshops.

The hands-on module is an extraordinary opportunity to put your data protection knowledge into practice. This course employs a methodology focused on practical workshops that will be moderated by practitioners in the field. The workshops will use various simulations that will allow you to learn by doing.

Should you be interested in participation in this course remotely, please contact us.

What will you learn:

• How to deal with controllers’ expectations and manage diverging objectives in the business environment (stakeholder management);
• How to ensure data protection by design and by default in a fast-changing digital and legal environment;
• How to assess data protection compliance and how it is interlinked with IT security;
• Risk analysis and management;
• How to assess issues related to personal data transfers;
• What actions to take in case of personal data breaches;
• How to implement controls;
• The tasks and responsibilities of the DPO;
• How to audit an ICT provider;
• The difference between anonymisation, pseudo-anonymisation and encryption;
• How to conduct a data protection impact assessment;
• What is a data processing agreement and its practical implications;
• How to counter opposition from the rest of the organisation – a view from the DPO perspective;
• How to ensure data protection compliant migration to a cloud computing service provider;
• How to draft a data breach protocol and effectively raise awareness;
• How to act after a significant data breach, including audit and lessons learnt.

Course methodology/highlights:

We believe that practical know-how is the key to effective learning. This course therefore includes:

• Individual preparation for the course – you are invited to bring along any information about the mission, vision, values and data protection (GDPR and EUDPR) framework and governance within your organisation for case study;
• Group and individual assignments;
• Practical exercises on DPO roles and responsibilities;
• An interactive approach: the module’s structure will give you the opportunity to ask questions and share and discuss experiences, knowledge, needs and challenges with the trainers and other participants;
• There will be time for note-taking on what you learn, so you can apply it to your own situation.

NB: The successful completion of Module 1 of the course will renew your DPO certification.

You will be able to

• facilitate the development of an effective data protection strategy and plan;
• draft specific policies and procedures;
• manage data breaches;
• ensure data protection compliant transfers of personal data;
• define the pragmatic approaches to ensure GDPR compliance within your organisation;
• support your organisation in identifying gaps to be addressed in view of GDPR and EUDPR compliance;
• advise your organisation on how to manage personal data;
• support a data protection communication and training plan;
• develop your professional international network in the field of data protection.

After taking this course, you can join EIPA’s dedicated community of practice together with former participants. You will also have access to the course materials for three months after the course.

• Managers and DPOs exposed to questions related to data protection and the management of the related risks, plans and solutions;
• Data protection experts and advisors;
• Certified DPOs;
• Anyone in the public or private sector who is responsible for their organisation’s compliance with the GDPR and EUDPR.

Online Course
For this online course we make use of Zoom

Programme Organiser
Ms Eveline Hermens
Tel: +31 43 3296259
e.hermens@eipa.eu

Discounts
EIPA member fee
EIPA offers a discount to all civil servants working for one of EIPA’s supporting countries, and civil servants working for an EU institution, body or agency

Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Spain, Sweden.

For all other participants, the regular fee applies

Early bird discount
The early bird discount is not cumulative with other discounts or promo codes, except for the EIPA member fee.

Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Spain, Sweden.

For all other participants, the regular fee applies.

Confirmation
Confirmation of registration will be forwarded to participants on receipt of the completed online registration form.

Payment
Prior payment is a condition for participation.

Cancellation policy
For administrative reasons you will be charged € 50 for cancellations received within 7 days before the activity begins. There is no charge for qualified substitute participants.

EIPA reserves the right to cancel the activity up to 1 week before the starting date. In that case, registration fees received will be fully reimbursed.

A few days before the start of the course you will receive the log-in details for accessing the course materials. You can log in here.