Conducting Data Transfer Impact Assessments (DTIAs)
Under the General Data Protection Regulation (GDPR), any organisation wishing to transfer personal data to a country that does not benefit from a pre-approval from the EU/UK as having ‘adequate’ levels of protection for the rights of individuals, must identify and apply alternative safeguards for those rights. Failure to apply those safeguards could render the transfer of data to be unlawful. Where none of the permitted safeguards can be relied on, the organisation must perform, and retain evidence of, a formal transfer risk assessment (TRA) that includes a record of the decision to transfer personal data. URM’s half-day Data Transfer Impact Assessment (DTIA) Course will address all aspects of performing a TRA and provide you with confidence to undertake and document your assessments.
BY ATTENDING THIS COURSE, YOU WILL LEARN:
- What is a DTIA/TRA and why is it important?
- The benefits for your organisation and your data subjects
- When do DTIAs need to be conducted and who should be involved?
- The required decisions and how to overcome internal resistance
- What comprises a TRA template?
- How to complete and document a DTIA in practice, including:
- The completion of an example template
- Practical hints and tips
- Pitfalls to avoid
- When to seek external help
WHAT ARE THE PREREQUISITES FOR ATTENDING?
Some basic knowledge of data protection law and key principles and terminology would be beneficial but not mandatory.
WHAT IS THE FORMAT OF URM’S DTIA COURSE?
You will work through a practical example of an assessment
URM’s DTIA Training Course leans heavily on discussions, exercises and real-life scenarios which are designed to help you understand how to conduct a successful and thorough TRA/DTIA back in your work environment.
The on-line course is also designed to encourage debate and the sharing of knowledge and experience.
The course runs from 9:30 am to 1.30 pm with two 10-minute breaks during the morning.
WHY TRAIN WITH URM?
- We believe that the key differentiator between URM and other data protection (DP) training providers is the calibre of our trainers.
- You will benefit from the fact that all URM’s trainers are practising DP consultants, who are highly experienced in supporting organisations prepare DTIAs and address common issues.
- We have extensive experience embedding DTIAs and other data protection processes into working practice.
- URM’s trainers all adopt a facilitative approach, where the goal is to maximise knowledge and skills sharing across the group.
WHO SHOULD ATTEND THIS COURSE?
Anyone who might be responsible for dealing with or contributing to DPIAs, including:
- Private, public, charity and voluntary sectors
- Data protection officers, leads or champions
- HR professionals
- Business and office managers
- IT professionals (including project managers, software developers and data analysts)
- Third party service provider (supplier) contract managers
- Legal and purchasing departments
- Data processors