Courses take place in:
London, Manchester, Glasgow, Edinburgh, Belfast and Dublin
Data protection law requires that personal information be held and used securely. The law also requires that relevant security arrangements be put in place for all outsourcing arrangements. News headlines consistently show that organisations are not doing enough to ensure the security of people’s personal information, both within the organisation and externally. It is not always obvious what measures should be taken by organisations to comply with the legal obligations.
This session, which includes instruction on the provisions of the upcoming EU General Data Protection Regulation, as well as the implications of Brexit, examines the law as it relates to data security and the practical steps that organisations need to take to ensure compliance with their obligations. It concentrates on how to avoid a data security breach, as well as what can be done to mitigate the effects of a breach that does occur. It also considers the steps that must be taken when an organisation outsources operations, such as payroll, website hosting, digitisation of records, debt collection and waste management. The session considers lessons that must be learned by the fines that have been imposed by regulators. Key aspects of this session include:
- analysis of the underlying law including a detailed review of the data security obligations
- the latest guidance from regulators
- data security implications of using external contractors and outsourced service providers, as well as sub-contractors
- examination of the regulator’s power to issue fines for security breaches and other legal and commercial consequences of such breaches
- managing a data security breach - law and best practice
- relevant information security standards, including ISO27001
- laptop encryption - when it is required
- informing individuals and notifying the regulator about data security breaches - what is required?
- confinement strategies to prevent further dissemination of lost or stolen data, as well as to mitigate fines
Attendance on this course can be used as credit towards gaining the Practitioner Certificate in Data Protection.
and other courses
by this Trainer
|Edinburgh||Wednesday, 13 September 2017 |
|London||Thursday, 21 September 2017 |
|Manchester||Wednesday, 18 October 2017 |
|Belfast||Wednesday, 01 November 2017 |
|London||Wednesday, 08 November 2017 |
Short Day – 10.00am to 4.00pm (lunch included)
£475 plus VAT or €625 plus VAT
10% discount for second delegate
15% discount for third and subsequent delegates
(bookings must be made at the same time to receive multiple delegate discounts)
Who should attend:
Data Protection Officers, IT Managers, Compliance Officers, Corporate Security Officers, legal advisers, persons responsible for risk management, and others.
View training courses by:
"Very informative course. Interesting and helpful."
"Very useful and interesting course. Well presented."
"The tutor’s knowledge and ability to put across points was very good."
South Eastern Health & Social Care Trust
“As someone who is new to the area I feel it was pitched at the right level and did not come across too technical.”
“The tutor’s ability to take specific questions was most useful.”
“The content was informative and practical.”
Dunfermline Building Society
Sheffield Hallam University
“Very informative and engaging trainer.”
London Borough of Richmond
“Very knowledgeable trainer.”