This essential 30-minute e-learning course provides a foundational introduction to the General Data Protection Regulation (GDPR). In a world where our company handles large volumes of sensitive information, it is critical that every employee understands their role in protecting it. A data breach can lead to serious consequences like identity theft and fraud, making compliance a top priority.

This training is designed to explain the importance of GDPR, outline your responsibilities, and provide a clear understanding of the regulation's core concepts. You will learn to identify what constitutes personal data, understand the rights of individuals (data subjects), and know the correct procedures for handling data privacy incidents. The course concludes with an assessment to ensure you have grasped these vital compliance concepts.

Why Is This Course Important?

Our company has policies in place to fully comply with the EU General Data Protection Regulation (GDPR). Understanding these rules is not just a legal requirement but a fundamental part of protecting our clients and our business from harm. By completing this training, you play an important role in ensuring we handle all personal information with the greatest care, keeping it confidential and secure from unauthorised individuals.

Learning Objectives

Upon successful completion of this course, you will be able to:

• Understand the objectives of the GDPR and your role in ensuring data protection.

• Recognise what constitutes "personal data" under the GDPR definition.

• Be familiar with the key purposes of the GDPR and the rights it guarantees to data subjects.

• Know the correct process for reporting a data privacy breach to the Data Protection Officer (DPO).

• Confidently handle requests from customers regarding their personal data.

• Check your understanding of basic GDPR concepts through a final assessment.

Course Outline

This training is structured into four key sections, followed by an assessment:

1. What is the GDPR?

• Introduction to GDPR: Learn why data protection is critical and how the GDPR was designed to ensure an adequate level of privacy protection.

• Key Objectives: Understand the core goals of the regulation, including the requirements for data to be processed for a clear purpose and on a legitimate legal basis with explicit consent.

2. How Does GDPR Work?

• Defining Rights and Responsibilities: Explore how the GDPR defines and protects the rights of data subjects while placing clear responsibilities on organisations that collect and process data.

• Organisational Requirements: Learn about key obligations such as performing Data Protection Impact Assessments (DPIAs), collecting minimal data, appointing a Data Protection Officer (DPO), and reporting breaches within 72 hours.

3. GDPR and Data Subjects

• Identifying Personal Data: Gain a clear understanding of what "personal data" is, covering everything from names and ID numbers to online identifiers, biometric data, and other sensitive information.

• Rights of the Data Subject: Discover the fundamental rights guaranteed to individuals under GDPR, including the right to be notified, give explicit consent, request data deletion, and know how their data is being processed.

4. Data Privacy Breaches

• Incident Reporting: Understand your personal responsibility to immediately complete and submit an incident report to the Data Protection Officer (DPO) if you discover a privacy-related incident.

• Informing Customers: Learn that the DPO is responsible for determining if and when customers need to be informed about a data protection breach.

5. Final Assessment

• A short assessment to test your understanding of key concepts, including GDPR's objectives, identifying personal data, and handling customer data request