This course describes the key conditions of the “Consent” and Data Protection Officer’s monitoring of GDPR, that a company should take into consideration in order to comply with the provisions of the Regulation (EU) 2016/679, known as the GDPR. It also explains a number of administrative fines imposed by the supervisory authority of various EU countries in order to understand the reason a company may be fined for non-compliance with GDPR and what a company should do to avoid be fined for these reasons.
It describes in detail how to obtain a “Consent”, the elements that must exist in order a “Consent” to be considered as a valid “Consent” and the “Consent” withdrawal process. It provides various good and bad methods used to obtain a “Consent” and the information that a controller should provide to data subjects when data subjects’ “Consent” is collected. It also provides examples to understand how to obtain valid “Consents” and how a controller can comply with the data subjects’ “Consent” withdrawal request.
This course explains in brief the key conditions related to the Data Protection Officer (DPO) and what qualities a DPO must have in order to be able to perform his/her tasks. It also describes in detail how a DPO should involve in GDPR monitoring and provides a number of checkpoints that a DPO should check and assess in order to identify any weaknesses in the company’s GDPR procedures.
This course also explains in brief the conditions of administrative fines that supervisory authorities may impose to a company for non-compliance with the provisions of the GDPR. It describes in detail a number of administrative fines imposed by various supervisory authorities, providing information for the different cases, the reason why the companies were fined, the amount of the administrative fine imposed and what a company should do in order to avoid be fined for these reasons.
The course is split into the following sections:
Section 1: All about GDPR Consent – How to obtain a valid Consent
- Key Definitions
- Brief summary of GDPR
- Obtaining a Consent as a lawful basis to process personal data
- How a Consent can be collected – Examples
- More conditions to understand the Consent
- Element 1: The Consent must be “Freely Given”
- Element 2: The Consent must be “Specific”
- Element 3: The Consent must be “Informed”
- Obtain a Consent – Examples
- Additional conditions for obtaining valid Consent
- Withdrawal of Consent – Examples
- Withdrawal of Consent – General Conditions
Section 2: Data Protection Officer (DPO) – Checklist
- DPO – Key points
- Knowledge, expertise and skills of the DPO
- The DPO Checklist – Key elements to check
Section 3: GDPR Fines-What to avoid
- GDPR fines – General conditions
- Orders by the supervisory authority
- The two levels of GDPR administrative fines
- GDPR fines – What to avoid (Real Cases)
- GDPR fines – What to consider
This course may take up to 5 hours to be completed. However, actual study time differs as each learner uses their own training pace.
The course is addressed to:
This course is addressed to all individuals who are involved in the processing of personal data in an organisation:
- Designated DPOs in Investment Firms, Investment Funds, ASPs, Trust Service Corporate Providers, Banks, Law Firms, Accounting Firms, insurance companies, hospitals, schools and in general DPOs of all organisations.
- Employees of Investment Firms, Investment Funds, ASPs, Trust Service Corporate Providers, Banks, Law Firms, Accounting Firms, insurance companies, hospitals, schools and in general of all organisations involved in the processing of personal data.
- Internal Auditors
- Senior managers
It is also suitable to professionals pursuing CPD for the renewal of CySEC Certificate (CySEC Basic and CySEC Advance Certificate) or other relevant professional certificates in other jurisdictions.
The course is offered fully online using a self-paced approach. The learning units consist of power point presentations and examples. Learners may start, stop and resume their training at any time.
At the end of the course, participants take a Quiz to complete the course and earn a Certificate of Completion once the Quiz has been passed successfully.
Accreditation and CPD Recognition
The course can be accredited by regulators and other bodies for 5 CPD Units that require CPD training in financial and other regulation.
Eligibility criteria and CPD Units are verified directly by your association or other bodies in which you hold membership.
Registration and Access
To register to this course, click on the Take this course button to pay online and receive your access instantly. If you are purchasing this course on behalf of others, please be advised that you will need to create or use their personal profile before finalizing your payment.
Access to the course is valid for 60 days.
If you wish to receive an invoice instead of paying online, please Contact us by email. Talk to us for our special Corporate Group rates.
Andreas Nicolaides has more than 8-years experience in the financial Industry. He is the Operations Manager of G.P. GLOBAL LTD offering consulting services and training courses to Investment Firms, Administrative Service Providers and Funds focuses in Internal Audit, compliance & AML issues. He is a member of the Internal Audit team of G.P. GLOBAL LTD and is involved in numerous Internal Audits of Cyprus Investment Firms, Administrative Service Providers and Funds where he is engaged, among others, in the audit for compliance with the GDPR regulatory framework. He has completed a number of trainings on GDPR regulatory framework and assisted a number of Cyprus Investment Firms, Administrative Service Providers and Funds to comply with their GDPR legal obligations.
Andreas Nicolaides holds a BA in Business Management from the Northumbria University (Newcastle – UK). Andreas also holds an Advance and Money Laundering certificate from the Cyprus Securities and Exchange Commission for the provision of investment services/activities.
See more Courses from Andreas Nicolaides