GDPR Foundation & Substance Course

Hours
1

This programme is delivered online over 16 sessions of 60 mins each with Q&A . 

Participants
1

This programme is available for a minimum batch size of 10 participants.  

Start DATE
1 th

This programme starts on the 25th of every month.

 

This course provides an in-depth understanding of the information security scenario globally and the necessary measures to be taken for compliance with RBI regulations. This module brings about the awareness of the participants on the current trends. 

Pre Requisites
  • Knowledge of information security management systems such as ISO 27001:2013 and risk management would be desirable but not compulsory
Who should attend
  • Data Privacy Officers and those who will be involved in advising top management on the introduction of GDPR into an organization.
  • Those planning to lead and implement a system, or new to managing a system
  • Consultants responsible for implementing data privacy frameworks
Topics Covered
  • Introduction to privacy and data protection
  • The “GDPR Roadmap”: practicalities, steps and tips for setting and implementing the GDPR project governance
  • GDPR legal basics: cases and examples, principles, penalties, responsibilities of data processor and controller, privacy by design and default
  • Privacy program: risk-based approach, design and build privacy in HR, marketing, IT, legal and procurement departments
  • Transfers of personal data: to third countries, third parties and the cloud, binding corporate rules, standard contractual clauses
  • Standard privacy controls: good practices, avoiding sources of risks, protecting information assets, encrypting and anonymizing, reducing soft and hardware vulnerabilities, evaluating privacy solutions and tools
  • Privacy control accountability framework
  • Data protection impact assessment, the DPIA “GDPR  Roadmap”, need, timing, process, internal/external consultation, flows, standard risks, approvals, communication and ISO for DPIA.
  • Codes of conduct and certification mechanisms
  • Data privacy audits and monitoring: e-discovery, data audits, activity tracking
  • Privacy awareness training: examples of initiatives
  • Data subjects’ rights in practice: dealing with with request, complaints and access to personal data by data subjects.
  • Incidence response: contingency plan for a data breach: responding to investigations
  • Scenario based-case for a data breach
Training Methodology
  • This is an online training program comprising live online classes, online content, recorded sessions, quizzes and tests.
  • Each Interactive Online Session will be for a maximum of 60 mins duration. The schedule will be worked out on a batch to batch basis.
  • Minimum batch size must be 10 Participants
  • Will involve active participation from the group
  • The session will be followed by virtual review and mentoring sessions for the group members for a period of 3 months and will be scheduled once in month for 45 mins.
  • Participant will be provided a login for 1 year to access reading material provided by the trainer on a subscription basis.