This one-day course is designed for those with GDPR in their area of responsibility (HR Directors, Finance Directors, Compliance Managers etc) and to help you actually implement GDPR. Whether you already have your list of GDPR action points and recomendations, or just an idea you need to start implementing but don't know where to start or how to manage the process - this is the course for you.

We start by helping you create your master document – your Record of Processing (RoP). We’ll then help you build your defensible position i.e. your ability to demonstrate accountability and control. Working through your RoP, we will address the 10-Steps to document your company records addressing all the key requirements of GDPR;

• The identification of the lawful basis for processing,
• The core GDPR rights associated with each lawful basis e.g. portability, erasure etc,
• The requirements for valid consent including provision of fair processing information via external and internal privacy policies
• The use of legitimate interests and how to complete a template legitimate interests balancing test.
• The transfer of data to third parties and the requirement for documenting your assessment of third party guarantees and the transfer of data out of the EEA
• The record retention schedules, including pro-forma best practise retention periods,
• The Information Asset Register and its importance in maintaining organisational control,
• The completion of a Subject Access Request (SAR), and demonstration of best practice tools e.g. redaction toolkit,
• High-risk data processing and the requirement for an Impact Assessment, and
• Completion of the ‘Task Management’ spread sheet to provide a company-wide overview of progress to compliance for Board and Regulator use.

You’ll complete and take away your own set of documentation ready to successfully implement your compliance program, as well as tools to help you deliver internal GDPR awareness.

Your trainer for the day is the highly-regarded keynote speaker and trainer Duncan Smith, Head of iCompli Ltd, who develops training courses for many of the UK’s leading Professional Bodies and has delivered information law and privacy courses for the Institute of Direct Marketing (IDM), the Chartered Institute of Marketing (CIM), and the Periodical Publishers Association (PPA). iCompli has helped many organisations with their GDPR audits, internal training and GDPR implementation, so bring a wealth of practical information to the table.

Anne Pennington ‏@annepinsight Oct 26
Great presentation today by @icompli on legislation changes around personalisation, privacy and data-driven marketing!

“An excellent presenter. I have been to a lot of workshops and seminars as a consultant. This was one of the very best”

FAQs

What can I bring into the event?

Just a notepad and pen!

What's the refund policy?

A full refund is offered up to seven (7) days prior to the event

Do I have to bring my printed ticket to the event?

You do NOT require a printed ticket. We will have a record of your payment.

Is my registration fee or ticket transferrable?

Yes. We ask that you let us know prior to the event via info@icompli.co.uk

Is it ok if the name on my ticket or registration doesn't match the person who attends?

Yes, that's OK. You can transfer your ticket to another member of staff if you can't attend for some reason.