Sovy recognised by KuppingerCole Independent Analysts More Info

GDPR for IT Professionals Online Training

Join This Course

  • 12 months access
  • Certificate on completion
  • Proven eLearning platform
  • Optimised for mobile devices and desktop
Training more than 500 people?

GDPR for IT Professionals Online Training

IT is an essential business function when it comes to your data protection programme. They are responsible for safe-guarding the data you collect and store in digital systems and implementing the data privacy programme across IT processes.

It is essential that your IT team receive specialist training in the GDPR so that they are equipped with the knowledge and tools to build GDPR compliant systems and processes, with the advice and support of your DPO or Designated Representative.

This Sovy Academy online training is written by experts in the GDPR and global data privacy legislation. It concentrates on the key aspects of the GDPR which your IT professionals need to be aware of in order to do their job.

This course requires an 80% pass rate. Successful trainees will receive a certificate which is valid for one year and will need to retake the course annually to ensure their knowledge is up-to-date.

Who should take the GDPR for IT Professionals online training?

This training is recommended for all employees, consultants or contractors who are responsible for your IT function.

Course Agenda

Text and Image Screen: What is the GDPR?
Interactive Screen: Why is the GDPR a game changer? New rights for data subjects. Defining personal data. Aligning EU regulations. Fines and Penalties. Global Reach.
Interactive Screen: Established businesses under GDPR. Examples, Weltimmo v. NAIH and Google Spain, Google Inc. v. Mario Costeja Gonzalez.
Interactive Screen: Where the GDPR doesn't apply. Domestic use. Non-EU. Non-behavioural.
Text and Image Screen: Examples of personal data.
Text and Image Screen: Anonymised and pseudonymised data.
Text and Image Screen: Examples of special categories of personal data.
Text and Image Screen: What does it mean to 'process' personal data? Examples of data processing.
Knowledge Check: Scenario. Help Elena figure out whether her company needs to comply with the GDPR.

Interactive Screen: Different roles outlined in the GDPR. Data Subjects. Data Controller. Data Processor. Data Protection Authority.
Interactive Screen: What rights do Data Subjects have? Right to access. Right to Rectification. Right to Erasure. Right to Restrict Processing. Right to Notification. Right to Data Portability. Right to Object.
Interactive Screen:  Structuring personal data as an IT professional. Tips on how to enable each right. Access, Rectification, Erasure. Restrict Processing. Notification. Data Portability. Object.
Interactive Screen: Privacy notices and policies. Informing Data Subjects of their rights. What you need to describe in a privacy notice. Types of Data. Data Collection. Lawful Basis. Recipients. Retention. Rights. Transfers. Consent. Complaints. Automated Decision-Making.
Text and Image Screen: How information should be presented in a privacy notice or privacy policy. Clearly. In plain language. Before or at the time you collect the data. Easily accessible. Do not hide your privacy policy.
Text and Image Screen:  Data Protection Authority summary. Powers of the DPA. Which DPA you should be familiar with. 
Knowledge Check: Scenario - Peter's coffee shop. Fill in the blanks to identify different roles outlined in the scenario. Help Peter identify what personal data he collects.
Knowledge Check: Scenario – Jan’s marketing emails. Jan purchases shoes from a French retailer. What are Jan’s rights?

Text and Image Screen: What are the responsibilities for the privacy point person? Who to go to if you have questions about data protection practices.
Interactive Screen: What are the basic data protection principles of the GDPR? Transparency. Purpose Limitation. Data Minimisation and Storage Limitation. Accuracy. Integrity and Confidentiality. Accountability.
Text and Image Screen: Responsibilities for IT professionals. Examine systems and infrastructure. Ensure GDPR compliance in key areas.
Interactive Screen: The four key principles of the GDPR for IT. Data Protection by Design and Default. Data Security. Data Breach Response. Data Governance and Accountability.
Text and Image Screen: Data Protection by Design and Default checklist.
Knowledge Check: Scenario – Nick is setting up a separate database for his EU customers. Help Nick to structure the data in accordance to the GDPR key principles.

Formal assessment with 20 questions. A score of 80% or above is required to pass the course and receive a certificate.