Conducting Data Protection Impact Assessments (DPIAs)
Under the General Data Protection Regulation (GDPR), any organisation processing personal data is required to implement organisational and technical measures to ensure that its use of personal data complies with the fundamental principles of the legislation. An important obligation is to ensure that the organisation identifies, understands and establishes evidence for compliance with the concept of ‘privacy by design’, i.e., making sure that the organisation’s processing does not adversely impact an individual’s (data subject’s) rights. Undertaking and documenting a data protection impact assessment (DPIA) is one of the key requirements of data protection legislation. URM’s half day course will address all aspects of performing a DPIA and will provide you with confidence in your approach.
BY ATTENDING THIS COURSE, YOU WILL LEARN:
- What is a DPIA and why is it important?
- The benefits for your organisation and your data subjects
- When do DPIAs need to be conducted and who should be involved?
- How to perform and document a DPIA in practice, including:
- The completion of an example template
- Practical hints and tips
- Pitfalls to avoid.
WHAT ARE THE PREREQUISITES FOR ATTENDING?
Some basic knowledge of data protection law and key principles and terminology would be beneficial but not mandatory.
WHAT IS THE FORMAT OF URM’S DPIA COURSE?
URM’s DPIA Training Course leans heavily on discussions, exercises and real-life scenarios which are designed to help you understand how to conduct a successful and thorough DPIA back in your work environment.
The on-line course is also designed to encourage debate and the sharing of knowledge and experience.
The course runs from 9:30 am to 1.30 pm with two 10-minute breaks during the morning.
WHY TRAIN WITH URM?
- We believe that the key differentiator between URM and other data protection (DP) training providers is the calibre of our trainers.
- You will benefit from the fact that all URM’s trainers are practising DP consultants, who are highly experienced in supporting organisations prepare DPIAs and address common issues.
- We have extensive experience embedding DPIAs and other data protection processes into working practice.
- URM’s trainers all adopt a facilitative approach, where the goal is to maximise knowledge and skills sharing across the group.
WHO SHOULD ATTEND THIS COURSE?
Anyone who might be responsible for dealing with or contributing to DPIAs, including::
- Private, public, charity and voluntary sectors
- Data protection officers, leads or champions
- HR professionals
- Business and office managers
- IT professionals (including project managers, software developers and data analysts)
- Third-party service provider (supplier) contract managers
- Legal and purchasing departments
- Data processors.