Course Description

This course aims to provide a structured approach for Information Security and Data Privacy Program leaders to effectively and efficiently achieve compliance with the GDPR.

The European Union’s General Data Protection Regulation (GDPR) are the regulations governing the processing and protection of personal data for citizens and residents of the European Union (EU). Beginning May 2018, both EU and non-EU organizations must comply with the GDPR, or face the risk of litigation, substantial regulator penalties, and reputational damage.

Students of this course will learn who the GDPR applies to, the main roles and responsibilities of members within organizations, and the key principles and requirements of the GDPR. Students will also learn the importance of, and how to set up and maintain, a Privacy Management Program within an organization Students will not need to already be privacy experts in order to benefit from the material contained within this course, but will rather use this course to quickly identify consequential shortfalls in GDPR domain knowledge while making strides to extend and strengthen their GDPR compliance expertise.

Furthermore, this course walks students through the planning and execution phases of a GDPR Compliance Project, while explaining the required technical and organizational measures and providing real-life examples, evidence, and practical recommendations for Information Security and Data Privacy Program leaders to achieve compliance with the GDPR. Students will be able to take immediate steps towards mitigating gaps with their organizations’ compliance with the Regulation. Students will also be able to set clear expectations for various departments on their respective roles and responsibilities in maintaining compliance with the GDPR. Finally, this course points students to helpful online resources that augment the course material in a meaningful way.

Target Audience

This course is intended for any Information Security or Data Privacy leader within an organization that requires compliance with the General Data Protection Regulation (GDPR). Users who take this course will learn the practical steps on how to achieve compliance with the GDPR after taking this course.

Prerequisites

  • Familiarity with GDPR
  • Familiarity with Data Privacy concepts
  • Cybrary’s “Introduction to General Data Protections” course

Course Goals

By the end of this course, students should be able to:

  • Understand which organizations must comply with the GDPR
  • Demonstrate knowledge of GDPR’s key principles, roles & responsibilities, and data subject access rights
  • Demonstrate knowledge of the importance of, and how to set up and maintain, a Privacy Management Program within an organization
  • Demonstrate knowledge on how to plan and prioritize a GDPR compliance project
  • Demonstrate knowledge of the technical and organizational measures for 13 GDPR Compliance activities

What is GDPR Compliance?

The European Union’s General Data Protection Regulation (GDPR) is a set of regulations that governs how personal data is processed and protected for residents and citizens of the EU. The GDPR went into effect in May 2018, and it requires compliance from both EU and non-EU organizations that collect personal information from EU citizens. Non-compliance can result in significant penalties, litigation, and reputational damage. The GDPR includes provisions that make it mandatory for organizations and businesses to safeguard the personal data of EU citizens for transactions that take place inside and outside of the EU.

What Does the GDPR Compliance Course Cover?

In the GDPR Compliance for Information Security Programs training course, students will learn which entities the GDPR applies to, the main requirements and principles of the regulation, and the roles and responsibilities of members within affected organizations. Additionally, students will learn the key concepts of a Privacy Management Program and how to create, implement, and maintain one.

The course also teaches students to identify shortfalls in their GDPR domain knowledge while increasing and strengthening their GDPR compliance knowledge. Students will go through the process of the planning and executing phases of a GDPR Compliance Project, developing a thorough understanding of the organizational and technical measures required for Information Security and Data Privacy Program leaders to maintain compliance with the GDPR.

Upon completing this course, students will:

  • Know which organizations have to comply with the GDPR
  • Understand GDPR principles, roles, duties, and the data subjects’ access rights
  • Understand why a Privacy Management Program is important
  • Understand how to set up and manage a Privacy Management Program in an organization
  • Understand how to plan and prioritize GDPR compliance projects
  • Understand technical and organizational measures for 13 GDPR compliance actions

This course is designed for Information Security or Data Privacy leaders of any organizations that must comply with the GDPR. Students who enroll in this course should have completed Cybrary’s Introduction to General Data Protection course and have some familiarity with GDPR and Data Privacy concepts.

Students who complete the GDPR Compliance course will earn 5 CEUs/CPEs and a Certificate of Completion.

Why is GDPR Compliance Important?

Maintaining compliance with the GDPR isn’t just important to prevent the harsh penalties that are enforced for non-compliance, but also provides the following:

  • Better data governance – The tenets of the GDPR are designed to protect the personal information of EU citizens, but when an organization complies with the regulation, it improves the overall data management and security as well.
  • Improved public image – All consumers want to be assured that their personal information is protected. When an organization complies with the GDPR and applies its measures to all customers (not just those in the EU), it improves credibility and trustworthiness overall.
  • Upgraded IT – Just as organizations will have better data governance when complying with the GDPR, overall improvements are made when IT systems are updated or upgraded to maintain that compliance.

When Does the GDPR Apply?

The GDPR applies to any company, organization, or entity that processes personal data as part of the operations of one of its branches established in the EU, regardless of where the data is processed. It’s also applicable for any entity based outside the EU that is offering goods or services or is tracking the behavior of individuals in the EU.

All organizations do not have the same requirements related to the GDPR. For example, some organizations are required to appoint a Data Protection Officer to manage GDPR compliance, but organizations that do not process personal data as a core part of their business are not required to do so.

How To Learn More about the GDPR

To learn more about the GDPR and compliance, enroll in the GDPR Compliance for Information Security Programs training course. At Cybrary, we make it easy for anyone to take online courses on their own schedule. As with all of our courses, this is a self-paced class that can be accessed anytime from anywhere with internet access. Just click on the Register button at the top of the page to get started.

Instructed By

Instructor Profile Image
Naomi Buckwalter
Instructor

Provided By

Cybrary

Certificate of Completion

Certificate Of Completion

Complete this entire course to earn a GDPR Compliance for Information Security Programs Certificate of Completion