Data Protection by Design and Default Workshop

A notice on COVID-19:

Given the heightened concerns surrounding the novel coronavirus (COVID-19), we want to take this opportunity reassure you that DQM GRC is delivering its data protection and privacy services in line with the latest guidance from the World Health Organisation and government authorities.  

If you’re considering our Privacy by Design training course, rest assured that we can deliver these courses remotely for your organisation via e-learning.

We are more than happy to accommodate your specific business needs and put together a plan that works for your organisation. Our high-quality services can be delivered in most scenarios, however extraordinary, whilst minimising the potential disruption to your business in this current climate.

You can find more information on our COVID-19 policy here.

Privacy by Design training courses

Privacy by Design is an essential obligation under the GDPR and DPA18, and ensures privacy is baked into your processes and products right from the start.

We can help your whole organisation develop a privacy-first mindset - choose either our standard 2.5 hours online training course, or our bespoke online package. Details for both of these training programmes are outlined below.

Option 1: 2.5 Hours Privacy by Design Training Course

This course based on the same content as our interactive, creative and practical Privacy by Design programme which won at the 2019 DMA Awards. You can find out all the details for that award-winning programme here.

"In 2 hours, DQM GRC took our team through all the basic elements of Privacy by Design and Default and what deliverables need to be included in projects. The live online session worked really well for our participants throughout Europe and was tailored to our organisation. We are pleased we chose DQM GRC to deliver this and I’m sure it will enhance our product development capability."

– Tanveen Panesar, Legal UK, Hindawi

This course aims to deliver the following objectives:

  • Highlight the risks and opportunities presented by GDPR
  • Summarise the organisational benefits of a Privacy by Design approach
  • Outline the key strategies which can be implemented
  • Build a privacy-centric thought process, whilst being a fun and engaging learning experience

Our Approach:

This condensed, online version of our award-winning Privacy by Design training course will bring the GDPR and Privacy by Design concepts to life with practical, real-life examples of how to succeed – and what happens when things go wrong.

We will demonstrate how data protection and Privacy by Design techniques can be used to improve every aspect of product development, with practical advice and specific examples of tools and techniques you can start using immediately.

Course Overview:

  Course Length:
2.5 hours.

  Number of Attendees:
Online, unlimited.

  Course Requirements:
No previous experience in privacy or data protection is required for this course. It’s suitable for every employee within your organisation, and if your role involves any aspect of product development (including legal, marketing, finance, development, sales etc) we actively encourage and welcome you to take this course.


Course Content:

The session starts with a discussion around why data protection is important, how it has changed over time and how privacy is understood across the world. The fundamental concepts of data protection are reviewed: Confidentiality, Integrity and Availability.

We outline the 7 key concepts of Privacy by Design in relation to standard practices. For an additional fee, we can update our session so it focuses on the 7 key concepts in relation to your organisation’s specific working practices, and highlight the changes which might need to take place to incorporate a Data Protection by Design culture across your organisation. We also summarise how and when a DPIA should be undertaken and worked into a development process.

We examine a standard project lifecycle with a specific focus on how different aspects of data protection come to the fore at different points of the project lifecycle, and how a privacy-first mindset helps to improve the project at each stage. The session will provide attendees with a checklist of requirements which should be considered for all projects.

The checklist includes: data protection, transparency, data minimisation, data retention, data subject access requests, data rectification and accuracy, data erasure and information security standards. The legal basis for processing is also revisited in relation to consent.

We take a look at how organisations can assure themselves that they are ready to make their project live, and the data protection tests and checks that need to be completed before take-off. We also look at how continuous improvement must be built into product management, and what data protection tasks need to be completed at the end of the product’s life.

Option 2: Bespoke Privacy by Design Training Course

Our interactive, creative and practical Privacy by Design programme won at the 2019 DMA Awards - you can find out all the details here.

What our attendees say:

"I have applied the different concepts in my everyday work life... ...this [training] has been inspiring."

"This course was innovative and refreshing. The approach on how we should protect the data of our users and how that will generate a great value on our products was quite new for me."

"This has helped me to ensure I change my focus on the internal products, and make sure privacy is at the heart of our designs."

This course aims to deliver the following objectives:

  • Highlight the risks and opportunities presented by GDPR
  • Summarise the organisational benefits of a Privacy by Design approach
  • Outline the key strategies which can be implemented
  • Build a privacy-centric thought process, whilst being a fun and engaging learning experience

Our Approach:

Centred around active activities and discussions, our online learning approach uses experiential learning techniques to make privacy training fun and ensure teams in every function develop a Privacy by Design attitude.

Our consultants will create a bespoke course by tying our programme to your organisation’s specific context and training needs. This includes everything from location specific context to soft skills training that can help teams work together. It is delivered live and at pace that suits your organisation, with plenty of time factored in for discussion and questions.  

Course Overview:

  Course Length:
This course is bespoke and can be tailored to any length that suits your organisation’s specific needs.

  Number of Attendees:
Max 20 per session. 

  Course Requirements:
No previous experience in privacy or data protection is required for this course. It’s suitable for every employee within your organisation, and if your role involves any aspect of product development (including legal, marketing, finance, development, sales etc) we actively encourage and welcome you to take this course.

Course Content:

This course is spilt into two halves. The first half is a knowledge transfer session that will create a consistent data protection knowledge base, rooted in both the regulatory environment of your choice and your organisation’s own culture and policies.

The second half is a practical session where attendees will consider what the data protection concepts mean in practice for different teams, and in relation to a real project of your choice.

The session starts with a discussion around why data protection is important, how it has changed over time and how privacy is understood across the world. The fundamental concepts of data protection are reviewed: Confidentiality, Integrity, Availability, Subject Rights, Lawful Bases of Processing and the Definition of Personal Data.

The initial session is then finished by reviewing the rights that data subjects have under the regulations and what is required in order to implement data subject rights. This includes discussions on the basis for processing and practical exercises to help visualisation of the rights in a business context.

In this session we introduce Ann Cavoukian’s 7 key concepts of Privacy by Design and use them to explain how to approach Article 25 in the GDPR.

Interactive discussions engage the attendees’ in thinking about these concepts in relation to current practices and thoughts around changes which might need to take place to incorporate a Privacy by Design culture across the organisation.

In this session we also talk about how and why DPIA should be at the heart of the project management process, and discuss the challenges of how this works in practice. We can either use your organisation’s own DPIA template or the ICO’s template to look at the intention behind the questions, and how the answers can be useful to the person completing it as well as to the DPO reviewing it.

This section looks at how communication methods, language barriers and cultural differences can affect communications and the practical things individuals should think about when communicating with colleagues. 

The session also looks at project lifecycles - specifically in relation to data protection and transparency. We can either use your own project methodology or a standard project lifecycle, and use this to explore a real project of your choice and look at what data protection activities will be needed, how various teams will have different perspectives on this and why consulting on data protection will result in a better project outcome.

The session will provide attendees with a checklist of requirements which should be considered for all projects.

The checklist includes: data protection, transparency, data minimisation, data retention, data subject access requests, data rectification and accuracy, data erasure and information security standards. The legal basis for processing is also revisited in relation to consent.

 

We take a look at how organisations can assure themselves that they are ready to make their project live, and the data protection tests and checks that need to be completed before take-off. We also look at how continuous improvement must be built into product management, and what data protection tasks need to be completed at the end of the product’s life.

Our Fantastic Results:

  • 100% of attendees say privacy will feature more heavily in their thinking because of our training
  • 100% of attendees from across different functions found it relevant to their job
  • 100% of attendees felt the training met with their expectations

Discuss your needs today

To find out more about how we can help your organisation or to discuss pricing options, call us now on 01494 442900 or complete our enquiry form:

Stay informed

Enter your e-mail and get the latest data news & advice straight to your inbox.

Find out more?

Leave your contact details below and one of our expert team will be in touch

We will only use the contact details you supply on the basis of our legitimate interest to respond to your query and contact you about DQM GRC. You will always be given the opportunity to opt-out from future communications. Please read our privacy policy for more details.

 

Find out more..

If you are interested in any of our services then please either use the contact form or contact us via of the methods below:

  •   Telephone
  •   E-mail

  •   +44 (0)1494 442900
  •   sales@dqmgrc.com