Overview

This course provides the starting point for any data protection training and is intended for anyone who handles personal data within an organisation. The course provides the Data Protection Act and the GDPR which will be incorporated within this Act. It talks about why the new legislation is being introduced; the similarities and differences between the old regime and the new one; and the enhanced rights we all have in relation to the processing of our personal data.

Objectives

• Explain the framework of data protection including the key principles of GDPR, the Data Protection Act, and the role of the ICO
• Differentiate between personal and special category data, as well as the roles of data controllers and processors
• Implement the fundamental principles of data protection to ensure lawful and ethical data handling
• Outline procedures for handling access requests, correcting data, privacy notices and complying with the right to be forgotten
• Demonstrate how to document objections, apply processing limitations, and balance individual rights with legal requirements