Griffith College Logo

Certificate in Data Protection Operations under GDPR

Certificate in Data Protection Operations under GDPR


Develop a core knowledge of the data protection concepts and practices

The General Data Protection Regulation (GDPR) came into force on 25th May 2018. It raises the bar significantly for how firms process personal data. Data protection is now a core skillset for all businesses – from the multinational to the small family firm. This course aims to provide you with the skills and knowledge to achieve compliance under the new data protection regime. This will be supplemented with a deeper-dive into the operational activities that are the essential part of any compliance programme.

Why study Introduction to Data Protection under GDPR with Griffith College?

This 2 day course is developed exclusively for Griffith College by Fort Privacy. It is a programme which provides professional training for small and medium enterprise. This training course will provide attendees with core knowledge of the data protection concepts and practices that are embedded into the GDPR giving them the confidence to contribute to their organisations compliance activities. This will be supplemented with a deeper-dive into the operational activities that are the essential part of any compliance programme. Attendees will examine the aspects of modern, digital on-line business that are driving the legislative changes in the GDPR and how these changes will impact on business practices. They will learn the key elements of compliance that are the building blocks for safe, compliant personal data processing.

Attendees will learn how to

  • Analyse data protection principles 

  • Understand how data protection practice is evolving under GDPR 

  • Examine how the key changes in GDPR impact your organisation 

  • Identify the operational activities that are required for compliance 

  • Determine the elements that need to be incorporated into their GDPR compliance roadmap

Course details

Course Outline

DAY 1:

This course introduces the concepts and principles of data protection and examines the significant changes in GDPR. We explore the concept of lawful processing in detail to equip attendees to ensure the data processing operations are lawful. We also look at further changes expected with the updated e-Privacy regulation and how to future proof your current compliance activities for the expected changes. The second part of the course examines the key compliance operations including the data catalog, data protection policies and statements, Data Protection officers and the key activities that go to demonstrating compliance. We examine what requirements are laid down in the GDPR for each of these activities and how to approach them in a GDPR compliant manner. We explore how to build these activities into a roadmap for compliance for your organisation.

DAY 2:

The focus of our training at all times is on practical application of data protection within common business scenarios equipping participants with knowledge and tools that can be applied immediately. The course includes exercises to illustrate the topic and reinforce learning.

DAY 1:
  • GDPR – the background story:  Why GDPR, why now? What are the aims of GDPR and why is the EU introducing this legislation now? 
  • GDPR – the terminology: What are the key definitions in data protection legislation that everyone needs to understand. 
  • GDPR – the principles: What are the data protection principles in GDPR and how do SMEs apply these principles in practice 
  • GDPR – the legality: How to ensure that any personal data your organisation processes has a legal basis 
  • GDPR – what to keep and what to throw away: How can you evaluate what data your company should keep and what it should discard 
  • GDPR – the practice: How can an SME demonstrate compliance to the GDPR? 
  • GDPR – the customer: How do you make sure your organisation can comply with its obligations to meet the rights of the data subject? 
  • GDPR – what next: What other legislation is changing and how will it impact compliance with the GDPR? What resources are available to SMEs and how do we access them?
DAY 2:
  • Building your data catalog: What is a data catalog (data inventory) and how do you go about creating one for your business? 
  • Creating your data protection policy and communicating your data processing activities: What is a data protection policy? What is a privacy statement? How do you create these and what should they contain to make them GDPR compliant? 
  • The Data Protection Officer: Do you need a Data Protection Officer? What does a DPO do and what is the best way to go about appointing one? 
  • Demonstrating Compliance: How do you demonstrate compliance? What are records of compliance that a SME should keep and who is responsible for keeping them? 


2 Day Course from 9am to 5pm 

January: 22, 23

How to Apply

Entry Requirements 

Open Entry

How to Apply 

Directly to Griffith College Short Courses department.



Study Mode Part-Time 

Fee: EUR 750.00


What further study can I do?

Participants may wish to further their studies at Griffith College.

Ready to take the next step?