General Data Protection Regulation (GDPR) Master Class
provided by: CTG Academy

Protection of personal data of EU Citizens has taken a major step forward with the arrival of the General Data Protection Regulation or GDPR. The GDPR provides a framework for legal and secure processing of personal data and most of all provides EU citizens rights to control and manage their personal data. The impact of compliance with the GDPR will be felt on a global scale so there is a fair chance that your organization might be impacted.

Compliance with the GDPR requires your organization to set up a comprehensive and pragmatic compliance program. CTG can facilitate you by providing a training program that will give you the knowledge and concepts to set up your GDPR compliance program. Training is not only focussing on the legal aspects of the GDPR but also how data protection and information security concepts must be applied to ensure full compliance.


Upcoming

Currently no (other) upcoming dates are planned for this course

Course Objectives

The goal of the training program is to give you hands-on and practical knowledge on:

  • All aspects and concepts of the GDPR and;
  • The practical application of concepts in relation to data protection, information technology and security.

Each Participant wil have gained knowledge on the following topics:

  • Basics of the General Data Protection Regulation;
  • Tasks and Responsibilities of Controllers
  • Tasks and Responsibilities of Processors
  • Tasks and Responsibilities of the Data Protection Officer (DPO)
  • Security and data breaches
  • Basics on Information security
  • IT infrastucture and the relationship with data protection and information security
  • Security, Privacy Tools and Controls
  • Cloud services and data privacy
  • Risk Assessment and Management and Data Privacy Impact Assessment
  • How to write Privacy Policies, Procedures and related Documents

Typical Audience

This course is designed for upcoming DPOs and other personnel responsible for the data protection of personal data who want to become more knowledgable on the governance, legal and procedural and technical aspects such as privacy and information security technology that is required to implement GDPR.

Course Prerequisites

A basic knowledge of English is required.

Course Delivery

The training is given in a classroom format and is structured in various modules to offer flexibility and to cater for participant needs and circumstances by considering prior learning and level of staff experience. The length of each module ranges from 4 to 8 hours and may include exercises, workshops, and formal assessments.

Courses can be given in English or in Dutch. Course material is in English.

Course Venue

This course can be given at the client’s site or at CTG.

Course Administration

Pricing

€ 4600 per person
€ 4150 per person on second subscription for the same company
€ 3700 per person on third (or more) subscription for the same company
All prices are VAT excluded; course material, lunch and beverages included.

Cancellation

  • By Participant: If a subscribed course participant is replaced by another participant or if the public course is postponed to a later date, no cancellation costs apply. A participant or a group that fails to attend, or that cancels a course without at least 15 working days written notice prior to the course start, is liable for the full subscription cost.
  • By CTG: CTG reserves the right to cancel a course at any time.

Course Logistics
All classroom courses start promptly at 9 am and are scheduled until 5 pm. All courses are organised at the CTG premises in Diegem (Belgium).
All courses can be given at the client site and are available for groups as well. Please contact us if you wish further information.

The standard language of each course is English.

* Prices subject to VAT

Course Outlines








  • Introduction to a controlled IT Infrastructure

This module will provide participants with an understanding of the

process to achieve and maintain a controlled IT Infrastructure and an

overview of the critical IT Infrastructure components.



  • Governance and strategy

This course will handle the importance of information security in the context of GDPR compliance; the basic security principles; the difference between governance and management; the different roles and responsibilities for information security; and to reproduce the Information security strategy development process.

  • Security Engineering

This course will handle: the different types of controls and how they relate to each other and to threats, attacks, vulnerabilities and impacts; the process and the different concepts of encryption and what the advantages and disadvantages are; the Concept of Privacy by Design; the process of incident management and response; and the responsibilties and roles.



  • Background, history and purpose of the GDPR;
  • Fundamental concepts and definitions of the GDPR;
  • Principles of processing personal data;
  • Legal grounds for processing activities;
  • Transparency and information requirements;
  • Data subject rights;
  • Controllers and processors;
  • Privacy by design, privacy by default, data security;
  • Data breaches;
  • Data protection impact assessment;
  • Data protection officers;
  • Transferring personal data to third countries;
  • Supervisory authorities;
  • Remedies, liabilities, and penalties.’

  • Risk assessment and management including DPIA

This module discusses on the concepts and requirements of risk management and data protection impact assessments.


Introduction to Sarbanes-Oxley (Sox) Compliance

This module introduces the concept of Sarbanes-Oxley (SOx) Compliance and will handle the following topics:

  • Greed, Fraud and Corruption
  • The Counter 'Act'
  • Internal Controls
  • Key Controls from Business Perspective
  • Key Controls from IT Perspective

  • Privacy and Security incidents

This course will handle the basics of Privacy and Security incidents. It

will enable the participants to: identify privacy and security

incidents; determine the impact of privacy incidents; and develop

preventative and corrective actions relating to privacy and security

incidents.

Meet our trainers

CTG's trainers are experts in their domain and bring the course content based on their experience. Meet some of our trainers below.
2025
Trainings Done
3075
Happy People
19048
Hours of Training
4000
Cups of Coffee

Contact

Europe

CTG Belgium NV

Woluwelaan 140A
1831 DIEGEM
Belgium
phone: +32 2 720 51 70
fax: +32 2 725 09 20

North-America

Buffalo, New York

800 Delaware Ave

Buffalo, NY 14209-2094

phone: +1 716 882 8000

fax: +1 716 887 7464