Data Protection (GDPR)
This online Data Protection course provides and understanding of how to comply with UK Data Protection Act including UK GDPR helping ensure data security.
Duration | 45 minutes
Following Brexit the UK Data Protection Act 2018 (DPA), incorporated the EU General Data Protection Regulations (GDPR).
The UK Data Protection Act 2018 puts duties upon employers to ensure that any data held is secure and processed correctly. These are same obligations that previously existed in the EU’s GDPR. The UK Data Protection Act has been referred to as UK GDPR. The UK has the right to diverge from GDPR over time but GDPR obligations will remain for those businesses that handle data of EU citizens.
The Information Commissioner’s Office (ICO) upholds information rights in the public interest and enforces the Data Protection Act.
Now GDPR in incorporated into the DPA UK citizens have; the right to be protected, the right to be forgotten, the right to consent etc. Citizen’s data must be protected, and we must ensure people are not put in vulnerable situations because of the exposure of their data.
This online Data Protection course provides and understand of employers responsibilities under DPA and provides an awareness to staff about what they must do to comply with the Act.
The course also serves to evidence that business have acted with due diligence by providing staff with appropriate training.
This online Data Protection Awareness course provides the knowledge and confidence to understand the Data Protection Regulations purpose. Upon completion learners will be able to explain what information falls under UK GDPR and have the necessary knowledge to implement UK GDPR-compliant processes. In addition, learners will know what is required with respect to data security and what rights Data Subjects have under Data Protection.
UNIT 1 – Data Protection Act 2018 & UK GDPR
In unit one, we will focus on the fundamentals of the GDPR, and the authorities associated with data protection.
UNIT 2 – GDPR Explained
In unit two, we will look into the GDPR in more depth, and how data protection laws have evolved over the years.
UNIT 3 – Lawful Basis for Preparation
In unit three, we will look at how organisations use personal data, and the steps they must take to make this use lawful.
UNIT 4 – Rights and Breaches
In unit four, we will look at the individual at the centre of personal data, and what rights they have when they’re data is collected. We will also look at how organisations must comply with data protection laws and how they should respond if that data is compromised.
UNIT 5 – Responsibilities and Obligations
In unit five, we will look at the key responsibilities organisation have when complying with the GDPR. We will look at the necessary action that is required for a company to protect an individual’s data, and how penalties can be enforced on organisations for failure to comply with the GDPR.
At the end of the online Data Protection Awareness course there is a 15 question, multiple-choice quiz. If learners demonstrate their understanding of course content by achieving a minimum score of 80%, we’ll email them their completion certificate. If learners score less than 80%, they can revisit any part of the course and retake the quiz until they are successful. A posted certificate is available for £9.
The certificate remains valid for 3 years.
This Data Protection course is specifically designed for:
- Businesses or prospective entrepreneurs who are new to data protection, or already working in a compliance capacity handling data
- Businesses who have doubts about the data protection regulations and how to apply them to the business
- Businesses who need to complete training in data protection for their employees
- Self-employed who need to know the obligations they must fulfil on this matter
- Study anywhere with an internet connection
- Complies with regulations
- CPD-accredited certificate
- Access on phones, tablets and desktop
- Carbon net-zero product
The GDPR was implemented for the greater good, but has nonetheless proved challenging and problematic for many thousands of businesses who handle EU citizens data. Before the GDPR, the Information Commissioner’s Office (ICO) could impose data breach fines with a maximum of 500,000 GBP, however, that has now changed to a 4% of the offending organizations turnover in the preceding financial year.
Some of the biggest fines have been to companies such as British Airways (£20M), Marriott Hotels (£99M) and Yahoo (£85M). Facebook narrowly escaped a huge fine, which could have been as high as £10.3 billion had the GDPR been in effect. However, because the data protection violations occurred in 2015, before the implementation of the EU’s general data protection regulation in 2018, the company paid the maximum possible fine under the General Data Protection Act 1998.
The reasons for the GDPR breach fines being issued vary from “not putting the necessary security measures in place” to “not disclosing a data breach to the customers” and “passwords being saved in plain text”. So, it’s important as a business to make sure your employees are properly trained to ensure no one is putting individuals or the business at risk.
Moreover, there aren’t only financial consequences when it comes to exposing personal data. The GDPR strongly emphasizes the importance of preventing data exposure of vulnerable people. Some UK city councils have launched investigations due to information being mistakenly shared that put vulnerable people at risk.
Statistics suggest that more personal data has been generated over the last two years than ever before, therefore, it is a crucial time to guarantee the safety of businesses and people’s data.
E: [email protected] | T: (+44) 0131 661 8253
GDPR Enforcement Tracker – https://www.enforcementtracker.com
UK Information Commissioner guide to GDPR – https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/
UK Data Protection Regulation 2018 – https://www.legislation.gov.uk/ukpga/2018/12/contents/enacted