Data Protection Impact Assessment (DPIA)
BOOK A COURSE
Mon, 18 Nov 2024
Information Asset Owner (IAO)
Online Training
Tue, 26 Nov 2024
Safer Recruitment Training – SOLD OUT – Sold Out
Online Training
Mon, 02 Dec 2024
Data Protection (GDPR) Overview
Online Training
Tue, 03 Dec 2024
Subject Access Request & Redaction of Information Workshop
Online Training
Tue, 10 Dec 2024
Caldicott Guardian
Online Training
No event found!
Data Protection Impact Assessment (DPIA)
Online Training
- Call scheduled for 3 hours via MS Teams with 30 minutes available immediately following the end of the session for queries or discussion.
- Presentation will be issued 4 working days in advance
- You will need to read the course materials prior to the session, so at the beginning you can highlight any areas that you may be specifically unsure of, or if you have any specific issues/scenarios that you want to discuss. These will be factored into the session.
- After the session, time will be spent reflecting and consolidating training learnt into a development plan
- Overall training will be 6 hours and a certificate will be issued
Effective Data Protection Impact Assessment training will help you to:
- Identify the need
- Describe the processing
- Consider consultation process
- Assess necessity and proportionality
- Identify and assess Risk
- Identify measures to mitigate risk
- Sign off and record outcomes
- Integrate outcome into an action plan
- Keep under review
The Law
- DPIAs are a legal requirement for processing that is likely to be high risk. Effective DPIA’s enable you to accomplish greater compliance, financial and reputational benefits, they help organisations to demonstrate their accountability and it builds trust and confidence with individuals.
- A DPIA is not a one-off exercise it is an ongoing process.
- Article 35(1) says that you must do a DPIA where a type of processing is likely to result in a high risk to the rights and freedoms of individuals
- Failure to carry out a DPIA when required may leave your organisation open to enforcement action, including a fine of up to £8.7 million, or 2% global annual turnover if higher.
- If you identify a high risk that you cannot mitigate, you must consult the ICO before starting the processing. They will give you written advice 8-14 weeks on whether you can process the data.
Aims of the Course:
- To help you identify Privacy Risks and how to keep track of them
- To have confidence in compliance with General Data Protection Regulation (GDPR) in relation to Privacy by Design
- To understand how to receive and provide information assurance against the DPIAs you are responsible for within your organisation
- To have confidence in completing a DPIA
- To promote questions and discussions
Course Tutors
Gary Baker
Director
John Davison
IG Assurance Manager