The GDPR covers the processing of the personal data of European citizens, even if that processing takes place outside the EU. When the UK leaves the EU, the GDPR will stay and the UK’s national regulator, the Information Commissioner’s Office (ICO), advises companies to carry out their preparation plans. This is the best place to start.
Achieve this qualification within matter of hours online or attend a short 2-hour evening seminar with an IDM expert 6-8pm and complete the exam online after.
This course has been developed in conjunction with the DMA Responsible Marketing Committee and the GDPR External Working Party, delivered by the IDM.
Module 1: Why does Data Protection matter to marketers?
- Background to the regulation – why it was needed
- Scope of the GDPR
- Penalties and enforcement
Module 2: Are the concepts in the GDPR new?
- A review of the GDPR vs. the Data Protection Act 1998
- Principles of Data Protection
- GDPR scope and implementation
Module 3: Personal Data
- Defining Personal Data and a Data Subject
- Special categories of data
Module 4: How can you gain ‘Consent’ for processing personal data?
- Defining Consent
- New conditions for obtaining Consent
Module 5: Are there alternatives to Consent?
- Defining Legitimate Interests
- Conditions for Legitimate Interests
Module 6: Profiling under the GDPR
- Defining Profiling under the GDPR
- Legal effects of Profiling
- Rules for direct marketing Profiling
Module 7: The Right to object to direct marketing and Profiling
- The right to object and how to communicate this
Module 8: What other information must you give to users?
Module 9: Individuals’ rights
- What specific rights do individuals have under GDPR?
- Right to erasure
- Retaining data for suppression
- Right to data portability
Module 10: Impacts on the database and records of processing
- What proof of Consent is required?
Module 11: Obligations of Data Processors
- Obligations of Data Processors
Module 12: Data breach notification
- Notifications of data breaches
Module 13: Accountability and Data Protection Officers
- Principle of accountability
- Data security
- Appointing a Data Protection Officer
Module 14: International issues
- Transfer of Personal Data overseas
- Cross-border campaigns and accountability
Module 15: Action planning