• GDPR regulations and how each are applied in real-world situations
• The difference between data protection and data privacy
• Obligations of a business in relation to personal data
• The responsibilities of data protection officers and employees
• Reportable and non-reportable data breaches
• Explanation of data protection impact assessments (DPIAs) and when they might be used
• Bring your own device (BYOD) and implications for GDPR
• Data protection in relation to emails with an explanation of delivery and read receipts
• Data Use and Access Act (DUAA) 2025 and how these changes affect GDPR in the UK
• Wearable technology and the implications on GDPR and data protection
• Privacy policies and what needs to be included
• Customer Due Diligence (CDD) and Anti-Money Laundering (AML) checks
• Principles of privacy by design
• Brief overview of the CIPP/E certification

**Please note that the contents of this course are intended as guidance and awareness in regards to best practice within organisations and do not constitute legal advice. For information specific to your company with regards to data protection, please contact your organisation’s data protection officer**

New sections and lectures added for 2025:

– Brief overview of the CIPP/E certification

– Principles of privacy by design

– Customer Due Diligence (CDD) and Anti-Money Laundering (AML) checks

– Wearable technology and the implications on GDPR and data protection (i.e. smart watches and smart glasses)

– Data Use and Access Act (DUAA) 2025 and how these changes affect GDPR in the UK

– Subject Access Requests (SARs)

– Protecting data during transit, for example using technology such as SSL

– Protecting data at rest, for example with the use of encryption

– Artificial intelligence (AI) challenges to data protection

– Case Study – How GDPR applies to a fictional organisation

* Data Protection Impact Assessment (DPIA)

* Section 82 Claims

* Data anonymisation

* Bring your own device (BYOD) and implications for GDPR

* Data protection in relation to emails with an explanation of delivery and read receipts

Over this course, you’ll learn about the following aspects of GDPR and Data Protection / Data Privacy Compliance

* An overview of the General Data Protection Regulations themselves

* Privacy policies and what needs to be included

* An in depth view of each right under GDPR

* Data Protection vs Data Privacy

* Obligations of a business in relation to personal data

* The responsibilities of data controllers and employees

* Reportable and non-reportable data breaches

Also included within each of the above sections are some real-world examples of these rights being applied in relation to personal data as well as information on who is liable should a breach occur, which can depend on the circumstances involved and more importantly how well best practice was followed in regards to a specific incident.

It is important to note that the importance of GDPR awareness applies to any data that goes in or out of the EU or is related to EU citizens, regardless of where your organisation may be based. This is especially important for organisations based in multiple countries.

Who this course is for:

• Anyone wanting to gain a basic level understanding of GDPR and how it applies in the real world