Certified Data Protection Officer GDPR Certification Course

Home
Courses
PECB
Certified Data Protection Officer GDPR

Acquire the necessary knowledge and skills, and develop the competence to perform the role of the data protection officer in a GDPR compliance program implementation.
Master the role of the DPO and become competent to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority.
Prove that you have the professional capabilities and practical knowledge to advise the controller and the processor on how to meet their obligations regarding the GDPR compliance.

Certified Data Protection Officer – GDPR

Develop the competencies and knowledge necessary to lead all the processes to comply with the requirements of the General Data Protection Regulation (GDPR) in
an organization
As data protection is becoming more and more valuable, the need for organizations to protect these data is also constantly increasing.
Besides violating the fundamental rights and freedoms of persons, not complying with the data protection regulations can lead to risky situations that could harm an organization’s credibility, reputation, and financial status. This is where your skills as a data protection officers come to place.
The PECB Certified Data Protection Officer training course will help you acquire the knowledge and skills to serve as a Data Protection Officer (DPO) so as to help organizations ensure compliance with the General Data Protection Regulation (GDPR) requirements.
Based on practical exercises, you will be able to master the role of the DPO and become competent to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority.
After attending the training course, you can sit for the exam, and if you successfully pass the exam, you can apply for the “PECB Certified Data Protection Officer” credential.
The internationally recognized “PECB Certified Data Protection Officer” certificate will prove that you have the professional capabilities and practical knowledge to advise the controller and the processor on how to meet their obligations regarding the GDPR compliance.

Course Outline

Module 1: Training course objectives and structure

Introduction
General information
Learning objectives
Educational approach
Examination and certification
About PECB

Module 2: General Data Protection Regulation (GDPR)

Structure of the GDPR
GDPR subject-matter and objectives
GDPR into EU, EEA, and EFTA countries
European Data Protection Board
Impact on the EU and beyond
Supervisory authority
Administrative fines
GDPR in the United Kingdom
UK GDPR and data protection act (DPA)

Module 3: Core considerations for the GDPR

Personal data protection
Key concepts
Personal data categories
Data protection principles
The rights of the data subject
Analysis of the GDPR challenges

Module 4: Designation of the DPO

Qualification of the DPO
Tasks of the DPO
Position of the DPO

Module 5: Analysis of the GDPR compliance program

Controllers and processors under the GDPR
Cooperation with the supervisory authority
Gap analysis
The GDPR scope

Module 6: Relationship with the top management

The DPO and the top management
Promoting data protection to top management level
Allocating resources
Employment contract of the DPO
Independence of the DPO in performing the tasks
Reporting to the top management

Module 7: Data protection policy

The structure of a policy
The application of the data protection policy
Data protection policy control, evaluation, and review
Communicating the data protection policy
Review of other policies related to data protection

Module 8: Register of processing activities

Identification of processing activities
Steps to create records
Key elements of records of processing activities
DPO’s role in keeping records of processing activities
Monitoring the data processing records

Module 9: Risk management process

Risk identification
Risk analysis
Risk evaluation
Risk treatment
Risk acceptance

Module 10: DPO operations

Data protection impact assessment
Need for a data protection impact assessment
When is a data protection impact assessment not necessary?
Role of the DPO in a data protection impact assessment
Data protection impact assessment methodologies

Module 11: Documentation management

Work documents
Types of documents
Value of documentation
Common problems in documentation management

Module 12: Evaluation of the data protection controls

The ISO/IEC 27701 standard
Mapping of the GDPR to ISO/IEC 27701
Data protection controls

Module 13: Data protection and technology

Data protection by design and by default
Anonymization
Pseudonymization
Access control
Logging and monitoring
Technical security measures
Mobile and portable devices
Software life cycle security
Data erasure and storage

Module 14: Awareness, training, and communication

Awareness program
Training program
Evaluation of the outcomes of the awareness and training sessions
Communication
DPO as a point of contact

Module 15: Incident management and personal data breaches

Events vs. incidents
Frequent threats and incidents
Incident management
Personal data breach
Personal data breach response plan
Personal data breach notification
Examples of personal data breaches

Module 16: Monitoring and measuring compliance

Determine measurement objectives
Define what needs to be monitored and measured
Monitor compliance
Determine the frequency and method of monitoring and measurement
Report the results

Module 17: Data protection internal audit

What is an audit?
Types of audits
Differences between internal and external audits
Data protection audit
Collecting and verifying information
Knowledge and competence to audit
Following up on nonconformities
Data protection external audit

Module 18: Treatment of nonconformities

The eight disciplines problem-solving method
Root cause analysis
Corrective action process
Preventive action process
Evaluation of the action plan

Module 19: Continual improvement

Continual monitoring of change factors
Maintenance and improvement
Continual update of documentation
Documentation of improvements

Module 20: Closing the training course

PECB GDPR certification scheme
PECB certification process
Other PECB services
Other PECB training courses and certifications

What you will learn

Understand the concepts of the GDPR and interpret its requirements
Understand the content and the correlation between the General Data Protection Regulation and other regulatory frameworks and applicable standards, such as ISO/IEC 27701 and ISO/IEC 29134
Acquire the competence to perform the role and daily tasks of the data protection officer in an organization
Develop the ability to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority

Audience profile

Managers or consultants seeking to prepare and support an organization in planning, implementing, and maintaining a compliance program based on the GDPR
DPOs and individuals responsible for maintaining conformance with the GDPR requirements
Members of information security, incident management, and business continuity teams
Technical and compliance experts seeking to prepare for a data protection officer role
Expert advisors involved in the security of personal data