About this course
Do you manage personal information of customers, clients, members of the public or employees, as a part of your job?
Since the entry of the General Data Protection Regulation (GDPR), if you work with any personal data, you have to follow strict procedures about how you should process, share, and protect it. Not adhering to the GDPR, even unknowingly, may have serious adverse effects for you and your organisation.
In this seminar, you will understand the exact principles of this new regulation even if you have no prior knowledge about it, and know how to implement these principles in your work.
Course methodology and highlights
- Simple explanation of the GDPR in an easy-to-understand language, without the use of high-level legal terms and jargons
- Role play and group exercises to help you get familiar with the practical application of the regulation
- Interactive discussions with data protection experts, practitioners, and other participants, so you can ask specific questions about your particular experience or challenge
Who is this course for:
Overall, this course will benefit everyone who work with data on a daily basis, but are not IT or legal experts, and do not have any prior knowledge of the GDPR.
This would include professionals in the European region, working in both the public and private sector.
What you will learn in this course
- The key concepts of the EU legal framework for data protection that are relevant for you
- How to protect the data you are responsible for and manage full control of it, without having to check each detail with your DPO
- What is the difference between controlling and processing data, and the responsibilities that you have to manage depending on your role
- How to report personal data breaches
- The right way to manage cross-border data transfer
By the end of the course, you will be able to:
- Apply all the specificities of the new regulation to your specific scope of work
- Exchange data with your colleagues and other professionals through processes that conform to the GDPR
- Send safe and secure emails both within the organisation and also to external parties
- Use the data you manage in the correct way on social platforms, both online and offline
- Design the data protection system for new or special projects that you may undertake
- Reduce the risk of infringement procedures against you and your organisation
Practical information
Course venue
European Institute of Public Administration (EIPA)
O.L. Vrouweplein 22
6211 HE, Maastricht
the Netherlands
Programme Organiser
Ms Eveline Hermens
Tel.: + 31 43 3296259
e.hermens@eipa.eu
Fee
The fee includes documentation and refreshments, two lunches and a reception/dinner. Accommodation and travel costs are at the expense of the participants or their administration.
Discounts
EIPA offers a 10% discount to all civil servants working for one of EIPA’s supporting countries, and civil servants working for an EU institution, body or agency.
Who are the supporting countries?
Civil servants coming from the following EIPA supporting countries are entitled to get the reduced fee: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Lithuania, Luxembourg, Malta, the Netherlands, Norway, Poland, Portugal, Spain, Sweden, United Kingdom.
For all other participants, the regular fee applies.
Meals
Lunches, the reception or dinner will be served at a restaurant in town. Special dietary requirements (e.g. vegetarian, diabetic) can be indicated once you receive the confirmation of the seminar.
Hotel reservations
EIPA has special price arrangements with a number of hotels. All hotels are within 10 minutes walking distance from EIPA. Should you wish to make use of this possibility, please book directly via the links below. Payment is to be made directly and personally to the hotel upon checking out. At the time of booking, please mention in the requested field the EIPA project number for your course.
Payment
Prior payment is a condition for participation.
Cancellation policy
For administrative reasons you will be charged €150 for cancellations received within 15 days before the activity begins. There is no charge for qualified substitute participants.
EIPA reserves the right to cancel the activity up to 2 weeks before the starting date. In that case, registration fees received will be fully reimbursed. EIPA accepts no responsibility for any costs incurred (travel, accommodation, etc.).
The programme
| 09.15 | Welcome and introduction to the course Rita Beuter, Senior Expert, EIPA, Maastricht (NL) |
| 09.30 | EU data protection legal framework and basic principles Emma Rodríguez Montes, Corporate Data Protection Manager at General Logistics Systems (GLS Group), Frankfurt (DE) |
| 11.00 | Coffee break |
| 11.30 | Data protection actors: data subject – controller – processor Dr Barbara Eggl, Data Protection Expert, Frankfurt (DE) |
| 13.00 | Lunch at EIPA’s restaurant |
| 14.15 | Ensuring data protection compliance: the role of the Data Protection Officer Barbara Eggl |
| 15.30 | GDPR into practice: group exercise on practical case studies Emma Rodríguez Montes |
| 16.30 | Reporting and plenary discussion |
| 17.30 | End of the first day |
| 18.00 | Reception/Dinner |
| 09.15 | The rights of data subjects Emma Rodríguez Montes |
| 10.15 | Transfers of personal data outside the European Economic Area: issues and challenges Barbara Eggl |
| 11.15 | Coffee break |
| 11.45 | Challenges posed by new technological developments: cloud computing, big data analytics, use of social media and the need to conduct Data Protection Impact Assessments Barbara Eggl |
| 13.00 | Break |
| 13.15 | Assessment of data breaches: recommendations for a practical methodology and implementation Emma Rodríguez Montes |
| 14.45 | Lunch at Hotel Derlon |
| 15.45 | End of the course |
What people say
“I had a lovely time in Maastricht and the course was very interesting and fully organised. Maastricht is a beautiful place too. It is such a relief to walk in that fresh air! I look forward to attend another course”
Dana Caruana
“Thank you very much for being able to participate in the group that attended the training - “GDPR: a Practical Guide for non-Data Protection Officers” of 9-10 October 2019, in Maastricht, NL. Everything was very well organized by EIPA, the lecturers were at a very high level. The topic was broad and very well presented as information. The Amrath Hotel DuCasque was great. I would gladly participate again in training organised by EIPA.”
Donika Hristova
“The course was very well organized and at a very high level. The speakers were competent, open to questions and discussions with the audience. The conditions were excellent and the attitude of the organizer was wonderful and nice. Thank you!”
Neli Kovacheva
“I want to thank you for the wonderful organization. The seminar was interesting and helpful for me. Maastricht is a beautiful and fulfilling place. I look forward to attend another course”
Stanislsva Ilcova-Ivanova
“I had a great time in Maastricht. The course was perfectly organized, very interesting and useful. I am pleased with the lecturers who took the course as well as the organizers. Thank you all for the kind attitude and understanding of the participants in this course. Maastricht is a very beautiful city. I look forward to visiting this city again and to have another opportunity to participate in an EIPA course in the future.”
Kristina Asenova
“The course was interesting and very practical. The lecturers presented the topic of the training very pleasantly. The organization of the course was perfect. Maastricht is a very beautiful city.”
Anna Todorova
“I have valued mainly the dynamic pace, the combination of theoretical and practical content, and the professionalism showed along the training course. Thank you for a nice experience.”
Federico Blázquez