DATA PROTECTION IMPACT ASSESSMENTS AND AUDITS

Provided by

About the course

DATA PROTECTION IMPACT ASSESSMENTS AND AUDITS


Testimonials

The course was invaluable. In such a short space of time, I learnt so much about data protection and its practical implications in everyday life. The course deliverers were extremely knowledgeable and I would strongly recommend that people attend the course if they need to have a good working knowledge of data protection.
J.S- Coventry City Council
Very good course. Informative and practical. Helped to distinguish between DPIAs and audits and worked through examples to test the approach (and new found knowledge).
MJ - Sheffield City Council


Data Protection Impact Assessments are the key to GDPR and security
compliance. They seek to ensure that new projects, systems and procurements involving personal data have privacy built into their design. Failure to carry out a DPIA for high risk processing can lead to enforcement action by the ICO.

This workshop will give you a step by step guide to completing a DPIA
and teach you how to audit your organisation. It will help you identify
and manage risks relating to personal data through a mixture of
theory and practical exercises.

DPIAS AND RISKS
GDPR on DPIAs, audits and data protection by design
WHEN YOU NEED A DPIA
What is ‘high risk’ processing?
Screening new projects and procurements
Prior Consultation with the ICO
When is it safe not to do one?
METHODOLOGY
Structure of a DPIA
Questions to ask
Examples of best practice and
templates
Planning and identifying risks
Consulting with stakeholders
THE OUTPUTS
What to include
How to present a DPIA to senior
managers
Making practical and effective
recommendations
WHAT IS THE OBJECTIVE
OF A DP AUDIT?

Checking the organisation’s DP
and privacy framework controls
Ensuring practical compliance
AUDITOR NEEDS
Key skills
Soft skills
ADEQUACY AUDIT
What policies and procesudres
do you need?
Gap analysis
Training needs analysis
COMPLIANCE AUDIT
Developing your questionnaires
Interview planning and technique
ASSESSING AND
REPORTING ON
NON-COMPLIANCE

Learning the lessons
Identifying and prioritising
non-compliance

Related article

Is the online Cyber Security MSc from the University of Liverpool the right path for you? If you are looking to take the next step in your IT caree...