About this online course
We believe in constantly updating professional knowledge, particularly in the field of data protection. In a time of unprecedented challenges posed by ever-evolving technologies and different ways to use personal data, continuous learning and updating your expertise is crucial.
The data protection officer (DPO) is a key element of accountability in every organisation as required by the General Data Protection Regulation (GDPR). However, the expectations and knowledge required for the DPO are multifaceted. That requires not only mastering the GDPR but also being familiar with practical aspects of ensuring secure personal data processing and responding to data breaches.
This is why a multifaceted approach in delivering this Refresher and Advanced Course for DPOs and Data Protection Experts course is paramount. Experts and practitioners at the forefront of data protection will guide you along the legal framework of the European data protection legislation, while elaborating on some of the most pressing privacy-related issues that have emerged in the context of the pandemic.
This course is designed to help you to refresh and update your data protection knowledge. Concrete examples regarding the data protection legislative framework, analysis of the new CJEU case law, guidelines from the EDPS as well as relevant and realistic case studies will help you to refine your expertise and deepen your understanding of your duties and responsibilities. You will be able to benefit from the knowledge of the trainers to support the performance of your daily tasks, make it easier to deal with challenging and complex issues in a structured way and take decisions that are pragmatic, but still compliant.
NB: The successful completion of the Refresher and Advanced Course for DPOs and Data Protection Experts will renew your DPO certification.
If you are interested in complementing your knowledge acquired on this course by interactive workshops where you can ‘learn by doing’ we advise you to book our complete course Data protection refresher and advanced course + hands-on Module
Course methodology and highlights
We believe that practical know-how is the key to effective learning. This course therefore includes:
- individual preparation for the course: you are invited to bring along any information about the mission, vision, values and data protection (GDPR) framework and governance within your organisation for case study;
- group and individual assignments;
- practical exercises on DPO roles and responsibilities;
- an interactive approach, with the opportunity to ask questions and share and discuss experiences, knowledge, needs and challenges with the trainers and other participants;
- room for note-taking on what you learn, so that you can apply it to your own situation.
Why EIPA?
- Relevance: EIPA has direct insight into the workings of the European Union.
- Never alone: you will be part of a growing network of colleagues and professionals throughout Europe.
- Quality assurance: all our courses have the EIPA Quality Seal. Upon successful completion, you will go home with an EIPA Data Protection Centre Certificate.
- Combine fun and facts: this course is held in one of Europe’s most charming cities. Discover the many opportunities to relax and experience what this region has to offer.
How will it help you?
You will be able to:
- facilitate the development of an effective data protection strategy and plan;
- draft specific policies and procedures;
- manage data breaches;
- ensure data-protection compliant transfers of personal data;
- define the pragmatic approaches to ensure GDPR compliance within your organisation;
- support your organisation in identifying gaps to be addressed in view of GDPR compliance ;
- advise your organisation on how to manage personal data;
- support a data protection communication and training plan;
- develop your professional international network in the field of data protection.
You will learn:
- how to deal with controllers’ expectations and manage diverging objectives in the business environment (stakeholder management);
- how to ensure data protection by design and by default in a fast changing digital and legal environment;
- how to assess data protection compliance and how it is interlinked with IT security;
- risk analysis and management;
- how to assess issues related to personal data transfers;
- what actions to take in case of personal data breaches;
- how to implement controls.
After-course support
After taking this course, you can join EIPA’s dedicated community of practice together with other, former participants. You will also have access to the course materials for a duration of three months after the course. Keep in touch and share your ideas with this growing community of professionals on EIPA’s Data Protection LinkedIn group.
Who this course is for
- managers and DPOs exposed to questions related to data protection and the management of the related risks, plans and solutions;
- data protection experts and advisors;
- certified DPOs;
- anyone in the public or private sector who is responsible for their organisation’s compliance with the GDPR.
Fernando Poças da Silva
Practical information
Online Course
For this online course we make use of WebEx
Programme Organiser
Ms Eveline Hermens
Tel.: + 31 43 3296259
e.hermens@eipa.eu
Discounts
EIPA offers a 10% discount to all civil servants working for one of EIPA’s supporting countries, and civil servants working for an EU institution, body or agency.
Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Spain, Sweden.
For all other participants, the regular fee applies.
Payment
Prior payment is a condition for participation.
Cancellation policy
For administrative reasons you will be charged € 50 for cancellations received within 7 days before the activity begins. There is no charge for qualified substitute participants.
EIPA reserves the right to cancel the activity up to 1 week before the starting date. In that case, registration fees received will be fully reimbursed.
I have a question
The programme
| 08.50 | Access of participants to online platform (Amsterdam CET) Join WebEx Meeting |
| 09.15 | Welcome; objectives of the course Florina Pop, Senior Lecturer, EIPA, Maastricht (NL) |
| 09.30 | Opportunities and challenges EU data protection landscape – GDPR and EU DPR Dr Barbara Eggl, Data Protection Expert, former DPO European Central Bank, Frankfurt (DE) |
| 10.15 | Break |
| 10.30 | How to ensure security of personal data processing An overview of the threats posed to personal data and how to protect against them Brian Honan, Director, BH Consulting, Dublin (IE) |
| 11.15 | Questions and answers |
| 11.30 | Break |
| 11.45 | Risk management Tools and methodologies used to conduct risk assessments and risk management Fernando Poças da Silva, Banco de Portugal, DP Cabinet, Lisbon (PT) |
| 12.30 | Lunch break |
| 13.00 | Data protection impact assessment: a practical approach Dr Barbara Eggl |
| 14.00 | Questions and answers |
| 14.15 | End |
| 08.45 | Access of participants to online platform (Amsterdam CET) Join WebEx Meeting |
| 09.00 | Data protection safeguards Technical safeguards for digital and physical data Brian Honan |
| 10.00 | Assignment: identify data protection safeguards for a particular use case |
| 10.20 | Controller – joint controller – processor Emma Rodríguez Montes, EUIPO, Alicante (ES) |
| 11.00 | Questions and answers |
| 11.15 | Break |
| 11.30 | Data breach management: how to respond to a data breach – DPO perspective Florina Pop |
| Assignment: analyse data breach: case studies and examples | |
| 12.30 | Lunch break |
| 13.00 | Examples, and questions and answers |
| 13.45 | End |
| 08.45 | Access of participants to online platform (Amsterdam CET) Join WebEx Meeting |
| 09.00 | Data breach management: how to respond to a data breach – DPA perspective (continued) Fernando Poças da Silva |
| 09.45 | Respond to data subject’s rights: practical approaches Florina Pop |
| 10.45 | Questions and answers |
| 11.00 | Break |
| 11.15 | Transfers of personal data – new challenges Speaker to be confirmed |
| 12.15 | Lunch break |
| 12.45 | Recent jurisprudence of the ECtHR and the CJEU Christopher Docksey, Hon. Director General, EDPS, Brussels (BE) |
| 13.15 | Questions and answers |
| 13.45 | Break |
| 14.00 | Recent jurisprudence of the ECtHR and the CJEU (continued) |
| 14.30 | Questions and answers |
| 14.45 | Conclusions and end of the Refresher and Advanced course. |
What people say
“The quality of the refresher course has tremendously improved over the last two years. Congrats to all the participants!”
Tracol
“High-quality courses given by an enthusiastic and very professional team of teachers. It was really a nice training.”
Triby
“A very useful and timely training. Well organised. Having the material electronically is a good step forward. A good mix of speakers from public and private sector. The training would benefit from having more speakers from the private sector. Thank you.”
DPO participant
“Very well organised and pertinent to the subject”
Oreste Cassar
“A valuable insight into a most topical issue.”
Miguel
“The quality of the refresher course was high and the addressed topics relevant and useful for DPO's daily work. Congratulations to EIPA and the training staff.”
João Leitão Figueiredo
“Despite the remote course, enthusiastic training staff with interesting topics.”
DPO participant
“Excellent presentations and real-case insights on the challenges faced by DPOs and how to handle them”
Pierre Langlois