General Data Protection Regulation (GDPR) Introduction
Help your company to prepare for the new General Data Protection Regulation (GDPR) which will replace the Data Protection Directive 95/46/EC from May 2018.
What is GDPR?
The EU GDPR was designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and reshape the way organisations across the region approach data privacy.
The aim of GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven and technological society that is increasingly more different from the time in which the 1995 Data Protection Directive was created.
What does GDPR mean for my company?
The biggest change to data privacy comes with the extended jurisdiction of GDPR. It applies to all companies processing the personal data of subjects residing in the European Union, regardless of a company’s location.
Due to many high-profile court cases, GDPR’s applications have been made clear – it will apply to the processing of personal data anywhere in the EU or data that has come from the EU, regardless of whether the act of processing takes place in the EU or not.
Offering goods or services to EU citizens (irrespective of whether payment is required) or processing personal data of subjects in the EU by a controller or processes not established in the EU means non-EU businesses must appoint a representative in the EU.
Organisations in breach of GDPR can be fined up to 4% of their annual global turnover or €20million (whichever is greater). There is a tiered approach to fines, e.g. a company can be fined 2% of their annual global turnover for not having their records in order.
How Can We Prepare?
A key factor of any organisation’s GDPR compliance is staff awareness and education. Therefore, deploying this course across your organisation can avoid fines for non-compliance through ensuring all members of staff understand the requirements under the new regulation, meaning your company can avoid fines and a blemish against their name.
The course is a must for all employees whose job involves processing and storing personal data of customers and clients, it will equip them with the knowledge of the principles, roles, responsibilities and processes under GDPR. This will reduce your organisation’s risk of non-compliance and punishment.
KEY LEARNING POINTS
The course will firstly introduce you to GDPR before helping you to discover the key data protection roles. You will determine the score of GDPR, including personal and sensitive data before moving on to learning the GDPR principle for the collection and processing of personal information, as well as accountability. The programme will then take you through GDPR application across your organisation, including:
- Collecting and processing personal data
- Requesting personal data
- Minors and consent
- Data breach reporting
Once the course has been completed, whoever has been studying will take a short, 30-minute test, during which they will need to answer 20 multiple-choice questions to ensure the knowledge developed throughout the course has been retained.
The programme gives companies a cost-effective solution to ensuring that all staff are following regulation that is set to change the way organisations store data and personal information. It can be deployed for existing employees or a part of an induction process for new hires, delivered through eLearning so that you have no additional technology, course attendance or integration costs.