You are here
Course "The EU General Data Protection Regulation (GDPR)" has been pre-approved by RAPS as eligible for up to 12 credits towards a participant's RAC recertification upon full completion.
On 25th May 2018 the EU-GDPR becomes effective, this date has been set to give organisations time to prepare and comply with the regulations. This may seem to be a long way off, but for most organisations there is a lot to be done.
With the escalation of data breaches, the sooner data is safe guarded the better. Often a data breach is not discovered for months, sometimes six months, implementing new policies, security systems, negotiations with suppliers and training people in an organisation will take time. The sooner you start the more time you have to make a good decision on the options you face.
This introductory course will give you an overview of the history of Data Protection within the EU and introduce you to the enhancements and new obligations imposed by the EU GDPR.
Why you should attend:
Data protection law in the EU is about to undergo the most significant changes since the 1995 EU Data Protection Directive. The new EU General Data Protection Regulation (GDPR) came into effect in May 2016 and you have until May 2018 to become fully compliant. The new law will require significant preparatory work that you should begin now.
Will the EU GDPR apply to my business?
Does your organisation acquire, store, process, distribute, manage, modify or analyse any data which can be used to identify an EU citizen OR does your organisation trade with EU citizens?
If you answered YES, then no matter whether your organisation is based in the EU or elsewhere in the world, then the EU GDPR will apply to your business. Even though the EU-GDPR is an EU regulation, it has a global reach. If an organisation is outside of the EU it MUST still comply IF it handles, stores, manages, or processes EU citizens' personal data.
The new Regulation will impose many legal obligations on organisations that control or process data and will afford new rights to those whose personal data is being held. The financial penalties for non-compliance will be very substantial so it is absolutely vital that your organisation is fully prepared as early as possible.
Areas Covered in the Session:
- Key definitions
- Bands of penalties and range of awards for breaches
- Timeline to application of GDPR
- Six data protection principles, lawfulness and consent
- Sensitive data
- Rights of data subjects
- Controllers and processors
- Data protection by design
- Securing personal data
- Reporting data breaches
- Transferring personal data outside the EU
- Powers of supervisory authorities
- Role of the EDPB (European Data Protection Board)
Who Will Benefit:
- Company Secretaries
- Compliance Officers
- HR Staff
- IT Admin
- Any employee with a responsibility for managing data
Day 1 Schedule
GDPR Context, Definitions and Penalties
- Determine what type of personal information is subject to the GDPR
- Determine the organisational and geographic scope of the GDPR
- Correctly define terms from the GDPR
- Identify where data subjects have a right to lodge a complaint with respect to data processing
GDPR Context, Definitions and Penalties (Cont.)
- Identify rights of a data subject to compensation
- Identify the infringements that will be subject to fines of up to 2% of annual turnover
- Identify the infringements that will be subject to fines of up to 4% of annual turnover
- Identify the date on which the GDPR comes into force across the EU
- the six principles for the processing of personal data
- how to demonstrate compliance with each of the six principles
- how controllers can demonstrate compliance
- lawful grounds for processing data
- the legal conditions for consent
- the additional conditions necessary for a child's consent
- which special categories of data may not be processed
- the circumstances in which special data may be processed
Rights of Data Subjects
- Identify the tests to respond transparently to data subject requests
- Identify the requirements on controllers when obtaining personal data
- Identify actions necessary in respect of personal data not obtained directly from data subjects
- Identify a data subject's rights of access
- Identify the grounds that give the right to be forgotten
- Identify the grounds that give the right to restrict processing
- Identify a data subject's right to data portability
- Identify a data subject's right to object to processing
Day 2 Schedule
Controller and Processor
- Differentiate between controllers and processors
- Identify requirements on controllers in respect of processing activities
- Identify how organisations are required to approach data protection by design
- Identify the requirements in respect of controllers or processors who are not established in the EU
- Identify the obligations applied to processors
Transfers of personal data
- Identify the principles covering the transfer of personal data outside the EU
- Identify where the EU posts details of organisations and/or countries that meet its adequacy test
- Identify the requirements in respect of binding corporate rules
- Identify the powers of supervisory authorities
- Identify the role of a lead supervisory authority
Co-operation and consistency
- Identify the tasks of the European Data Protection Board (EDPB)
- Identify how the EDPB ensures consistency of application of the GDPR across the Member States
CEO, The GDPR Clinic
A Chartered Global Management Accountant (CGMA), Vanessa has many years experience working as a financial controller for multi-national businesses.
A holder of the EU GDPR Practitioner (EU GDPR P) qualification which is ISO 17024 accredited and issued by the International Board for IT Governance Qualifications (IBITGQ), she now works with businesses to help them with GDPR compliance and training.
She has vast experience working within senior management teams and has been involved with the establishment and implementation of corporate policies, ensuring that they meet the strict levels of both internal and external corporate standards.
Vanessa is now the CEO of The GDPR Clinic based in the UK and works with businesses to help them with GDPR compliance and training.
Location: London, UK Date: September 12th & 13th, 2017 and Time: 9:00 AM to 6:00 PM
Venue: WILL BE ANNOUNCED SOON
Register now and save $200. (Early Bird)
Price: $1,695.00 (Seminar Fee for One Delegate)
Until August 10, Early Bird Price: $1,695.00 From August 11 to September 10, Regular Price: $1,895.00
Register for 5
attendees Price: $5,085.00
Save: $3,390.00 (40%)*
Sponsorship Program benefits for “Quality Assurance Auditing for FDA Regulated Industry” seminar
At this seminar, world-renowned FDA Regulated Industry subject matter experts interact with CXO’s of various designations. Executives who carry vast experience about FDA Regulated Industry and Experts get down to discussing industry-related best practices, regulatory updates, changes in technologies, and much more relating to FDA Regulated Industry.
As a sponsor of these seminars, you get the opportunity to have your product and company reach out to C-Level executives in FDA Regulatory -related industries and become known among these elite executives and subject matter experts. Apart from being seen prominently at these globally held seminars, you also get talked about frequently in our correspondences with our experts and these participants.
For More Information- https://www.globalcompliancepanel.com/control/sponsorship
Contact us today!
NetZealous LLC DBA GlobalCompliancePanel
Toll free: 1-800-447-9407
Follow us on LinkedIn: https://www.linkedin.com/company/globalcompliancepanel
Like us our Facebook page: https://www.facebook.com/TrainingsAtGlobalCompliancePanel/
Follow us on Twitter: https://twitter.com/GCPanel