EXIN Privacy and Data Protection

Who Should Attend?


Duration: 5 Days

With the ever-increasing explosion of information flooding the internet, every company needs to plan how to manage and protect privacy of persons and their data. Not without a reason, many new laws – in the EU as well as in the USA and many other regions – are being formed to regulate both.

The European Commission has just published the EU General Data Protection Regulation (GDPR), meaning that all organizations concerned need to comply with specific rules. PDPP builds on the subjects covered by the Foundation certification by focusing on the development and implementation of policies and procedures to comply with existing and new legislation, application of privacy and data protection guidelines and best practices, and by establishing a Privacy organization and Data Protection Management System.

This course is designed for all staff who need to understand data protection and the European legal requirements as defined in the GDPR. As well, this course will incorporate the Personal Data Protection Act 2010 of Malaysia.

  • A certification that validates a professional’s knowledge and understanding of the European privacy (data protection) legislation and its international relevance
  • Apply the knowledge and understanding of data protection in everyday professional practice

Module 1: Privacy and Data Protection Fundamentals & Regulation

  • Definitions
  • Personal Data
  • Legitimate Grounds and Purpose Limitation
  • Further Requirements for Legitimate Processing of Personal Data
  • Rights of Data Subjects
  • Data Breach and Related Procedures

Module 2: Organizing Data Protection

  • Importance of Data Protection for the Organization
  • Supervisory Authority
  • Personal Data Transfer to Third Countries
  • Binding Corporate Rules and Data Protection in Contracts

Module 3: Practice of Data Protection

  • Data Protection by Design and by Default related to Information Security
  • Data Protection Impact Assessment (DPIA)
  • Practice related Applications of the Use of Data, Marketing and Social Media

Module 4: Data Protection Policies

  • Importance of Data Protection for the Organization

Module 5: Managing and Organizing Data Protection

  • List the Different Types of Administration (GDPR Art 28 & 30)
  • Indicate what Activities are Required to Comply with the GDPR

Module 6: Roles of the Controller, Processor and Data Protection Officer (DPO)

  • Roles of the Controller, Processor and Data Protection Officer (DPO)

Module 7: Data Protection Impact Assessment (DPIA)

  • Data Protection Impact Assessment (DPIA)

Module 8: Data Breaches, Notification and Incident Response

  • Data Breaches, Notification and Incident Response

Register Now

Drop us your entry if you are interested to join this course.