GDPR - The Next Steps

Overview

This course is designed to build on the GDPR - a Comprehensive Introduction course. It will seek to apply your existing knowledge to a series of scenarios that are commonly encountered by data protection officers, in-house counsel and solicitors in private practice.

Throughout the day, emphasis will be placed on the content of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA). You’ll be advised as to how to ensure compliance with their key provisions.

Guidance will also be given on how the ICO and the courts are interpreting the key provisions of the UK GDPR and the DPA.

Who is this for?

This course will be of benefit to:

• Paralegals
• Apprentices
• Trainee solicitors
• Qualified solicitors
• Partner
• Advocates
• Legal execs

It's also highly relevant to senior manager with data protection responsibilities.

What will you learn?

By the end of this course, you'll be able to:

• Comprehend the relationship between the EU GDPR and the UK GDPR
• Describe the key terminology, principles and rights associated with the UK GDPR
• Understand the circumstances in which a data protection impact assessment must be carried out and the methodology to be applied
• Recognise the significance of privacy statements and to be able to construct and modify them in a manner compliant with the more onerous requirements of the UK GDPR
• Comprehend the rules relating to subject access requests and consider how to respond appropriately to such requests
• Review and revise a data processing contract in the light of the requirements of article 28(3) of the UK GDPR
• Describe the issues relating to direct marketing activity set out in the Privacy and Electronic Communications Regulations 2003 and apply these to a series of practical exercises.
• Complete a legitimate interests’ assessment in respect of marketing
• Describe the contents of the draft ePrivacy Regulation
• Understand the new obligations relating to data security breach reporting and consider in what circumstances the ICO and the data subjects affected need to be notified
• Complete the ICO’s security breach reporting form
• Consider how to reduce the likelihood of being served with a Civil Monetary Penalty ('CMP') and to consider what mitigating steps should be taken if notice of a CMP is received
• Be aware of recent case law relating to claims for compensation and consider what steps need to be taken to minimise risk

How does this help your career?

Practical interactive sessions will give you exposure to real life examples, allowing you to develop your expertise and confidence.

As a result, you’ll return to the office better equipped to deal with the problems that can emerge in respect of the GDPR and the DPA.

This advanced skillset is in-demand and will open your career path up to specialist opportunities and senior roles.

PSC Elective

This course may be taken as a PSC elective, although it may also be attended by non-trainees.

SRA Competencies

B, C