In January 2012, the European Commission set out plans for data protection reform across the European Union in order to make Europe ‘fit for the digital age’. Four years later, an agreement was reached on what that involved and how it will be enforced. At its core, GDPR is a new set of rules designed to give EU citizens more control over their personal data. It aims to simplify the regulatory environment for business so both citizens and businesses in the European Union can fully benefit from the digital economy. As of 25 May 2018, all organisations are expected to be compliant with GDPR.
Failure to comply with GDPR can result in a fine ranging from 10 million euros to four per cent of the company’s annual global turnover, a figure which for some could mean billions. Fines depend on the severity of the breach and on whether the company is deemed to have taken compliance and regulations around security in a serious enough manner.The maximum fine of 20 million euros or four percent of worldwide turnover – whichever is greater – is for infringements of the rights of the data subjects, unauthorised international transfer of personal data, and failure to put procedures in place for or ignoring subject access requests for their data.
This course trains staff and organisation on the GDPR and enables organisations achieve and maintain compliance relative to the regulation.
- Comply with Article 39 of the GDPR and demonstrate that you’re continuously training staff on their responsibilities.
- Educate teams on the roles, principles and processes under the Regulation.
- Use this e-learning training as part of your induction programme to raise awareness and strengthen staff understanding of the GDPR.
- Encourage a culture of data protection throughout your organisation and ensure everyone receives the same level of training.
- Test learner knowledge to demonstrate compliance for auditing purposes.