About this course
Do you manage personal information of customers, clients, members of the public or employees, as a part of your job?
Since the entry of the General Data Protection Regulation (GDPR), if you work with any personal data, you have to follow strict procedures about how you should process, share, and protect it. Not adhering to the GDPR, even unknowingly, may have serious adverse effects for you and your organisation.
In this seminar, you will understand the exact principles of this new regulation even if you have no prior knowledge about it, and know how to implement these principles in your work.
Course methodology and highlights
- Simple explanation of the GDPR in an easy-to-understand language, without the use of high-level legal terms and jargons
- Role play and group exercises to help you get familiar with the practical application of the regulation
- Interactive discussions with data protection experts, practitioners, and other participants, so you can ask specific questions about your particular experience or challenge
Who is this course for:
Overall, this course will benefit everyone who work with data on a daily basis, but are not IT or legal experts, and do not have any prior knowledge of the GDPR.
This would include professionals in the European region, working in both the public and private sector.
What you will learn in this course
- The key concepts of the EU legal framework for data protection that are relevant for you
- How to protect the data you are responsible for and manage full control of it, without having to check each detail with your DPO
- What is the difference between controlling and processing data, and the responsibilities that you have to manage depending on your role
- How to report personal data breaches
- The right way to manage cross-border data transfer
By the end of the course, you will be able to:
- Apply all the specificities of the new regulation to your specific scope of work
- Exchange data with your colleagues and other professionals through processes that conform to the GDPR
- Send safe and secure emails both within the organisation and also to external parties
- Use the data you manage in the correct way on social platforms, both online and offline
- Design the data protection system for new or special projects that you may undertake
- Reduce the risk of infringement procedures against you and your organisation
European Institute of Public Administration (EIPA)
O.L. Vrouweplein 22
6211 HE, Maastricht
Ms Eveline Hermens
Tel.: + 31 43 3296259
The fee includes documentation and refreshments, two lunches and a reception/dinner. Accommodation and travel costs are at the expense of the participants or their administration.
EIPA offers a discount to all civil servants working for one of EIPA’s supporting countries, and civil servants working for an EU institution, body or agency.
Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Spain, Sweden.
For all other participants, the regular fee applies.
Lunches, the reception or dinner will be served at a restaurant in town. Special dietary requirements (e.g. vegetarian, diabetic) can be indicated once you receive the confirmation of the seminar.
EIPA has special price arrangements with a number of hotels. All hotels are within 10 minutes walking distance from EIPA. Should you wish to make use of this possibility, please book directly via the links below. Payment is to be made directly and personally to the hotel upon checking out. At the time of booking, please mention in the requested field the EIPA project number for your course.
Prior payment is a condition for participation.
For administrative reasons you will be charged €150 for cancellations received within 15 days before the activity begins. There is no charge for qualified substitute participants.
EIPA reserves the right to cancel the activity up to 2 weeks before the starting date. In that case, registration fees received will be fully reimbursed. EIPA accepts no responsibility for any costs incurred (travel, accommodation, etc.).
I have a question
|09.15||Welcome and introduction to the course
Rita Beuter, Senior Expert, EIPA, Maastricht (NL)
|09.30||EU data protection legal framework and basic principles
Emma Rodríguez Montes, Corporate Data Protection Manager at General Logistics Systems (GLS Group), Frankfurt (DE)
|11.30||Data protection actors: data subject – controller – processor
Dr Barbara Eggl, Data Protection Expert, Frankfurt (DE)
|13.00||Lunch at EIPA’s restaurant|
|14.15||Ensuring data protection compliance: the role of the Data Protection Officer
|15.30||GDPR into practice: group exercise on practical case studies
Emma Rodríguez Montes
|16.30||Reporting and plenary discussion|
|17.30||End of the first day|
|09.15||The rights of data subjects
Emma Rodríguez Montes
|10.15||Transfers of personal data outside the European Economic Area: issues and challenges
|11.45||Challenges posed by new technological developments: cloud computing, big data analytics, use of social media and the need to conduct Data Protection Impact Assessments
|13.15||Assessment of data breaches: recommendations for a practical methodology and implementation
Emma Rodríguez Montes
|14.45||Lunch at Hotel Derlon|
|15.45||End of the course|