This training enables the exercise of the position of Data Protection Officer, giving him competence to implement the Privacy and Data Protection policies of the company, required by the GDPR. All companies, regardless of size, will have to respect the new rights of individuals, as holders of their personal data, whether they are employees, suppliers, customers, users or other categories of holders of personal data. The training is conducted in Portuguese. A certificate issued by Strongstep will be awarded at the end of the training.

Lawyers, Jurists, Compliance managers, Project Managers, Risk Managers, Information Security Officers, ISO/IEC 27001:2013 Auditors).

• Understand the adherence of all stakeholders to an approved code of conduct to achieve compliance with the GDPR
• Demonstrate compliance with the obligations of all stakeholders and enable data subjects to assess the level of data protection for products and services
• Implement controls for the exchange of information by electronic means between stakeholders
• Increase transparency and compliance with the GDPR to ensure adequate standards of protection to and by third parties within the normal protection provisions of the GDPR

General reading skills in English, as there is material in English.

• Course objectives and structure;
• GDPR - Framework;
• Core Principles of the GDPR;
• Data subject rights;
• Data classification;
• Data breach notification;
• DPO (functions, position and responsibilities);
• Data breach notification;
• Organization awareness for information security;
• Gap Analysis;
• Risk assessment according to ISO 31000;
• DPIA (Data Protection Impact Assessment);
• Data mapping flows;
• Control implementation;
• Leadership and approval of the GDPR Compliance Project;
• Data Protection Policy;
• Política de Proteção de Dados;
• Data Classification;
• Risk Assessment in the GDPR;
• International transfers of personal data;
• Information security basics in light of ISO/IEC 27001:2013;
• Presentation of practical cases to support the theoretical part of the training
• Identifying the risks of a proposed software;
• Preparation of a communication plan and a monitoring report;
• Identifying areas for improvement in project management case studies.

Tânia Machado de Almeida is the Data Protection Officer (DPO) of Strongstep and a senior consultant in privacy matters, both in the public and private sectors. She assists clients in the technology, pharmaceutical, and other sectors in achieving compliance with their data protection obligations, with a special focus on GDPR, ISO 27001, and Cybersecurity. Tânia holds a master's degree in Law from Católica Global School and is certified as a Data Protection Officer (PECB). She is also a member of the International Association of Privacy Professionals (IAPP) and an official of the Portugal branch of the European Association of Data Protection Professionals.