Managing Personal Data Breaches
Under the General Data Protection Regulation (GDPR) Data Controllers have a duty to record and, in some cases, report personal data breaches to the Information Commissioner as well as Data Subjects.
In addition, there are a range of other statutory and regulatory duties for recording, reporting and responding to information security incidents impacting on personal data. But there are also practical and reputational benefits from responding promptly and appropriately. An effective response can be the last chance to put things right.
This workshop will examine the law and best practice, drawing on real-life case studies, to identify how organisations can position themselves to deal appropriately with data security incidents and data breaches, in order to minimise the impact on customers and service users and mitigate reputational damage.
This is an interactive workshop using exercises and group discussion to support real-world application.
Key Topics
- GDPR requirements and definitions
- Information Security standards
- Receiving reports and information
- Investigating a breach
- Time limits
- Reporting thresholds
- What is reportable and what is recordable
- Reporting Mechanisms
- External reporting ' ICO, DS and others
- Containment, recovery and closure
- Dealing with the ICO
Dates & Cost
Online
£399 plus VAT
Classroom
£449 plus VAT
Timings: 10am to 4pm
Course tutors
All our associates are experienced information governance professionals who have been training and advising in this field for many years.
What our clients say about us
I would highly recommend the GDPR Practitioner Course. The Tutor was extremely knowledgeable and gave plenty of chance for group conversation or individual questions. A great course for anyone wanting to expand their knowledge of GDPR and understand putting the principles into practise.
SL, BCH
I would highly recommend the GDPR Practitioner Course. The Tutor was extremely knowledgeable and gave plenty of chance for group conversation or individual questions. A great course for anyone wanting to expand their knowledge of GDPR and understand putting the principles into practise.
SL, BCH
I learned so much! The course was just the right balance of theory and practical, and was very well delivered.
CB, CHAS
The course was very useful as an IG Officer. The trainer was knowledgeable and explained some complex aspects of the legislation using interesting examples and real life scenarios. As a refresher, even with lots of work experience behind me, it was very useful to undertake the Practitioner course. The course materials and handbook are invaluable and I know I will re-use them in conjunction with my usual resources.
NC, Lincolnshire County Council
A very practical and all-encompassing coverage of the UK GDPR provided over 4 days. Although 4 days is not enough time to cover this whole subject in depth, there was just enough covered with further resources and links provided within the sessions to cover all aspects of the GDPR to a level at which I now feel a lot more confident in my role. Thank you, Kirsty!
SW, Norwich University of the Arts