Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Fundamental Principles of Personal Data Processing
- Sources of national and international legislation.
- Scope of application for personal data protection laws.
- Powers and authority of the data protection regulatory body.
- Judicial remedies for the right to personal data protection.
- GDPR fundamentals: key information, definitions, and selected topics.
- Sector-specific GDPR applications.
- Defining personal data.
- Concepts of data processing.
- Lawful bases for processing personal data.
- Obligations of the Data Controller.
- Rights of data subjects.
- Administrative fines and penalties.
- Personal Data Protection Act of 10 May 2018 – regulatory scope.
- Procedures for appointing a Data Protection Officer.
- Proceedings for breaches of personal data protection laws.
- Monitoring compliance with personal data protection regulations.
- Civil, criminal, and administrative liability.
- Conditions for lawful processing of personal data (standard and sensitive data).
- Legal requirements for entrusting data processing to third parties.
- Data Protection Impact Assessment (DPIA).
- Data protection by design and by default.
- Lawful bases for transferring personal data to third countries.
- Protecting personal data within employment relationships.
Appointment of a Data Protection Officer
- Mandatory scenarios for appointing a Data Protection Officer.
- Voluntary appointment of a Data Protection Officer.
Eligibility Criteria for a Data Protection Officer
- Required qualifications for the role.
- Employment status and contractual arrangements.
Status and Independence of the Data Protection Officer
- Direct reporting lines to senior management.
- Ensuring adequate support and resources for the DPO.
- Involvement in all matters related to personal data protection.
- Prohibition on giving instructions regarding the DPO's professional duties.
- Managing conflicts of interest within the organization.
- Prohibition on dismissal or penalizing the DPO for performing their duties.
- The obligation to maintain confidentiality regarding tasks performed.
Information Security Management
- Reviewing organizational security management systems, including relevant Polish standards.
- Identifying privacy risks and their legal implications.
- Principles of risk assessment and evaluating the effectiveness of security measures.
- Applying a risk-based approach – practical completion of Risk Analysis templates.
- Managing the personal data lifecycle.
Executing Data Protection Officer Duties
- Legal basis for DPO appointment.
- Identifying who must appoint a DPO, when, and the procedure for doing so.
- DPO status and required qualifications.
- DPO responsibilities and planning methodologies.
- Conducting compliance reports for data processing in both traditional and IT systems.
- Documenting DPO activities.
- Preparing inspection reports.
- Rules for supervising documentation of personal data processing.
- Powers of the Office for Personal Data Protection (UODO) regarding DPOs.
Practical Guidance on Inspections by the Office for Personal Data Protection
- Requirements for auditees during inspections.
- Strategies for preparing for an inspection.
- Case study analysis.
Practical Workshops
- Drafting an exemplary Information Security Policy.
- Developing management instructions.
- Creating a Register of Processing Activities.
- Preparing a 'Small' Personal Data Protection Documentation package.
- Case study execution.
- Identifying common errors in documentation preparation.
Supplementary Materials for Participants:
Essential Forms and Templates:
- Consent for use and dissemination of image.
- Event newsletter subscription consent.
- Consent to receive offers.
- Template for sending offer-related emails.
- Template for sending general communication emails.
- Sample personal data protection policy.
- Template for information obligation notices (GDPR compliant), including instructions.
- Risk analysis template.
- Register of processing activities – template.
- Register of processing categories – template.
- GDPR Breach Register – template.
- GDPR Compliance Checklist – template.
- Instructions for handling personal data protection breaches.
- Data Protection Breach Report template.
- Register of security incidents and corrective/preventive actions.
- Register of corrections.
- Register of restorations.
- Model correction document.
- Model restoration template.
- Model objection form.
- Model contract excluding further processing of personal data.
- Sample consents for competitions, marketing, and publications.
- Information obligation for ferry crossings.
- Information obligation for meeting monitoring.
- Information obligation for recruitment.
- Information obligation for the National Revenue Administration.
- Information obligation for LES.
- Information obligation under Public Procurement Law (UCoC).
- Information obligation under the Labour Code.
- Tax information obligation.
- Authorization for employees to process personal data: template with examples.
- Notification of breach to data subjects – template.
- Personal Data Processing Agreement for the Controller – template.
- Personal Data Processing Agreement for the Processor.
- And many more resources.
Requirements
Target Audience
- Individuals who are currently beginning their role as a Data Protection Officer.
- Professionals slated for appointment to this position in the near future.
21 Hours
Custom Corporate Training
Training solutions designed exclusively for businesses.
- Customized Content: We adapt the syllabus and practical exercises to the real goals and needs of your project.
- Flexible Schedule: Dates and times adapted to your team's agenda.
- Format: Online (live), In-company (at your offices), or Hybrid.
Price per private group, online live training, starting from 3900 € + VAT*
Contact us for an exact quote and to hear our latest promotions
Testimonials (1)
The variety of the information shared and the clarity to explain terms in plain English.
