The Award in GDPR will give you a clear understanding of the main legal requirements and information to make sure your marketing activities involving personal data are compliant to the GDPR and DPA18. The course will take you through the key concepts of the Regulation, highlighting the actions you can take to be compliant.

Details

Level: 4
Duration: Online (35 CPD hours)

During your qualification in the GDPR, you will learn to:

• Process personal data under the GDPR
• Obtain marketing permission
• Select the most appropriate lawful basis to process personal data
• Be compliant to the principles of data protection
• Notify individuals about the use of profiling
• Upholding the rights of individuals to control their personal data
• Store the personal data you collect
• Be compliant during cross-borders marketing campaigns
• Minimise the impact of a personal data breach and communicate it to the relevant authority as well as to the individuals affected by it.

Ways you can learn with us

Virtual Classroom: Tutor led, live, online classroom environments.

Online: Self Study, via an always-on, always open portal, providing an engaging multimedia learning experience.

In person: Face-to-face, tutor-led classroom training. To ensure everyone’s safety while attending courses at our training centre, we’re taking a range of precautionary measures.

Course availability:

Please complete the form above for further details.
Date Anytime
Location Online

Price:

Member £450.00
Non-Member £495.00
NB: Prices subject to VAT

Qualification Information

Introduction to the GDPR

• GDPR: a bit of context
• How does the GDPR affect the processing of personal data?
• How does GDPR apply to cross-border campaigns?

Consumer trust

• Data protection: the importance for marketers
• Are consumers happy to share their contact data?
• Case Study – The Guardian

GDPR concepts

• GDPR concepts
• GDPR key-terms
• Have the principles of data protection changed?
• How is the GDPR implemented?
• Penalties under the GDPR - Examples

Personal data

• What are the definitions of personal data and data subject?
• Identifiers
• What are special categories of data?

Lawful processing - Consent

• Which lawful basis can I use for marketing?
• The six lawful bases
• Consent
• Can consent be conditional?

Lawful processing – Alternatives to consent

• Alternative to consent – Legitimate interest
• Factors to consider when deciding between consent and legitimate interests
• How do you communicate legitimate interests?

Profiling under the GDPR

• Profiling under the GDPR
• Does profiling have legal effects?
• What are the legal effects?
• What are the rules for direct marketing profiling?

Individuals’ rights

• The right to be informed
• The right of access
• The right to rectification
• The right to erasure
• The right to restrict processing
• The right to data portability
• The right to object
• Rights relating to automated decision-making including profiling

Processors’ obligations

• What obligations do processors have?
• Processors’ responsibilities
• Contracts with processors
• Non-compliant processors

Accountability

• What is accountability?
• What does accountability mean for marketers?
• Data protection for new products or services
• What does the GDPR say about data security?
• Mitigating risk to data privacy
• Do you need to appoint a Data Protection Officer (DPO)?

Record keeping

• Data mapping
• Database requirements
• What other records of processing must you keep?

Data breach notification

• What is a personal data breach?
• Personal data breach notification process
• Communicating with data subjects following a breach

International issues

• Brexit’s impact
• Transfers of personal data from the UK to other EU countries
• Transfers of personal data into the UK from EEA countries