According to GDPR terms, specific data treatment responsible and subcontractors must appoint someone in charge of data protection – the DPO. This works for every authority and public organism and of any other organization whose main activity consists of systematically controlling or treating personal data specially in a large scale. Appointing a DPO (internal or external) can facilitate GDPR compliance and give a competitive advantage to enterprises in the digital market.
This course ables the exercise of the Data Protection Overseer, giving him the skills to implement the Enterprise’s Data Protection and Privacy policies, demanded by GDPR. Every enterprise, no matter the size, will have to respect people’s newfound rights ad owners of their personal data, be they workers, suppliers, clients, users or any other kind personal data owner.
The Data Protection Officer’s position is quite demanding, it’s the contact bridge between the enterprise and the controlling authority, so he/she must have specialized knowledge in the realm of justice and data protection practices, as well as the ability to inform and counsel, control the GDPR compliance, make people aware and have them take GDPR courses, audit and cooperate with controlling authorities, as well as other functions.
Fines can reach up to 20 000 000€ (twenty million euros) or 4% of the business volume billed worldwide the year prior. Fulfilling the obligations stated in GDPR and making them competitive advantages at Innovation, Clients, Reputation and Financing level is a challenged issued to enterprises, These are sometimes obligated to have a DPO, whether others are just “invited” to appoint a DPO.
- Independence and absence of interest conflicts on the exercise of his functions;
- This service possesses the necessary triangulation:
- Legal knowledge;
- PECB certified DPO;
- IT support team.
- Combination of European Regulation Laws knowledge with Data Protection practices;
- The ability to interpret organizations’ needs;
- Competence to know organizations’ stakeholders’ strategy;
- Know-how to design solutions for data protection and privacy procedures’ implementation.
The course is targeted to everyone who is involved in Personal Data Protection and Information Security, to people who need to understand the European legal requirements and to people who want a career in Data Protection.
Introduction to RGPD
Essential Chairs – Concepts
Essential Essentials – Principles
Rights of data subjects
Impact assessment of data protection
Data breach management
International data transfers
Privacy Shield – Compliance Decisions
Functions of the dpo: profile, responsibility and duties, appointment and recommendation, supervision action
Fundamentals of iso 27001 and 27002
Seminar: Process Analysis