0

0800 435 772

GDPR - The Essential Guide

6-hour course  |  6 CPD hours

£369 +VAT per person

£369 +VAT
per person
£369 +VAT
per person

  • 11 & 12 March 2025 PM
    1:45pm - 4:45pm
    Book
  • 09 & 10 September 2025 AM
    9:30am - 12:30pm
    Book

About our online courses

At UK Training we have taken a fresh approach to online training that we're sure you will enjoy. We've taken all the best features of the classroom and replicated them online meaning you'll get the same high quality training combined with the time and money savings that come with training online.

All our online training is visually engaging, highly interactive and informative ensuring your online experience will be just as rewarding as the classroom.

Click here to view a sample of our online training

About our online courses

At UK Training we have taken a fresh approach to online training that we're sure you will enjoy. We've taken all the best features of the classroom and replicated them online meaning you'll get the same high quality training combined with the time and money savings that come with training online.

All our online training is visually engaging, highly interactive and informative ensuring your online experience will be just as rewarding as the classroom.

Click here to view a sample of our online training

This course can be presented in-house at your premises. You can find out more about our in-house training here.

If you would like to make an enquiry simply fill in the quick contact form below and a member of our in­house team will be in touch shortly.

Fields marked with an * are mandatory

Home > Courses > GDPR - The Essential Guide

GDPR - The Essential Guide

6-hour course

Course prices:

Classroom: £369 +VAT per person

Online: £369 +VAT per person

Course overview

The introduction of the General Data Protection Regulation (GDPR) has seen a fundamental shift in attitudes towards privacy and data protection in the UK.  The data protection regime is now tougher than ever before, so it is essential that you and your organisation are able to adapt to this challenging environment.

This course is a practical and comprehensive guide to complying with the requirements of UK data protection law and GDPR in particular. It will help you fully understand the definitions that are so crucial to getting your compliance right. It will also illustrate the measures and steps you need to take to satisfy the ICO, avoid complaints and make informed decisions. Crucially, it will enable you to continue running your organisation effectively  - avoiding over-complicating processes and creating unnecessary difficulties.

The course is presented by data protection experts who have a clear understanding of the legal landscape and will be happy to address any concerns your organisation may have. It is designed to be interactive and enjoyable for attendees as well as hugely informative.

What will be covered?

  • The scope of GDPR and key definitions
  • The Data Protection Principles
  • Legal basis for processing
  • The Privacy and Electronic Communications Regulations
  • Rights of the Data Subjects
  • Data Protection Impact Assessments
  • Data breaches: responding and reporting
  • The role of the Data Protection Officer
  • International data transfers
  • The role and powers of the Information Commissioner

Who should attend?

This course will benefit any staff working in HR, IT, compliance, operations and finance, as well as legal advisors, marketing professionals, company secretaries, directors and anyone with a responsibility for managing data or advising on data protection issues.

What will you learn?

  • Why is privacy and data protection important - what is its purpose?
  • To whom does data protection law apply? 
  • How did Brexit impact UK data protection law?
  • What constitutes processing of personal data?
  • How can you tell which information you collect falls within the definition of personal data?
  • Which categories of personal data require special treatment?
  • What is the difference between a data controller and a data processor?
  • What information must be included on a Privacy Notice and why must you have one?
  • How long is it appropriate for you to retain personal data?
  • Why is the principle of ‘accountability’ so important to GDPR?
  • Which policies, procedures, records and registers can help you to demonstrate accountability?
  • What is the difference between Privacy by Design and Privacy by Default?
  • What are the six legal bases for processing personal data?
  • How does the basis you choose affect the rights of data subjects?
  • Do you need to include data processing activities in all your contracts?
  • What are the new rules on consent and when is it appropriate to ask for it?
  • How and why may you process personal data without relying on consent?
  • How does PECR restrict your use of email, text and telephone calls for marketing purposes?
  • What are the different constraints when marketing to individual and corporate subscribers?
  • What rights do data subjects have and how can they be exercised?
  • What should you do if someone asks you to erase all data you hold about them?
  • What is meant by automated decision making and profiling?
  • How can you protect your business from compensation claims?
  • On what grounds may you refuse to comply with the request of a data subject?
  • When must you undertake a Data Protection Impact Assessment and how should it be done?
  • What constitutes a personal data breach and what should be recorded on a data breach register?
  • Who must appoint a mandatory Data Protection Officer?
  • What are the tasks involved and skills required to be a DPO?
  • If you transfer data internationally, what safeguards must you put in place?
  • What are your obligations to the Information Commissioner?
  • What are the new fines and penalties the ICO has at its disposal?

Extra benefits

  • A course pack containing the information presented on the day
  • A toolkit of checklists to help you implement your policies and procedures.
  • A certificate of attendance
  • Complimentary refreshments and lunch provided

Course presenters

  • Keith Dewey

    Keith is a well-established information security and data protection practitioner, with extensive experience in training, public speaking and consulting.

    He has held CISO and DPO roles at large UK companies, and worked across a range of industries including financial services, utilities and real estate. Keith is also a Certified EU GDPR Practitioner, has a Certificate in Information Security Management Principles (CISMP) and passed the Certified Information Security Manager (CISM) and Certified in Risk and Information Systems Control (CRISC) exams.

    View testimonials
  • Tim Musson

    Tim has many years experience as a university lecturer in computing. Since leaving the University in 2010 he has been working in data protection.  During this time he has provided training and support for various organisations including a major international bank, a major pharmaceutical company, multiple law firms, charities and public bodies.  For several years he was convenor of the Privacy Law Committee at the Law Society of Scotland and a member of their Technology Committee. He is a member of the International Association of Privacy Professionals (IAPP) and holds their Certified International Privacy Professional (CIPP/E) and Certified International Privacy Technologist (CIPT) certifications.

Course dates

Online course dates

  • 11 & 12 March 2025 | 1:45pm-4:45pm Book
  • 9 & 10 September 2025 | 9:30am-12:30pm Book