This course aims to describe and explain what does the Regulation (EU) 2016/679 provide for the implementation of security measures and why an organisation should implement security measure for the protection of personal data in process. It aims to explain how an organisation can decide for the security measures to be implemented and provides a number of examples of organizational and technical security measures. The course also aims to describe and explain the necessary documentation that an organisation should have in place to respond to data subjects rights and to a data breach.
This course describes the reason why an organisation should implement security measures to secure the processing of personal data and describes what documents an organisation should have in place in order to respond to data subjects’ requests and possible data breaches. The course provides a number of examples of security measures. It also describes in brief about the necessary documentation to be developed and explains what these documents shall include by providing examples/templates of these documents.
The course covers the following topics:
- The need to have security measures in place and how can decide what security measures to implement
- Examples of security measures
- Pseudonymisation and Encryption explained
- The data subject’s rights in detail
- Examples of documents to be in place in order to respond to data subject’s rights
- Data breach in brief
- The necessary documents to notify the Supervisory Authority and data subjects in case of a breach
This course may take up to 2 hours to be completed. However, actual study time differs as each learner uses their own training pace.
The course is addressed to:
This course is addressed to all individuals who are involved in the processing of personal data in an organisation:
- Designated DPOs in Investment Firms, Investment Funds, ASPs, Trust Service Corporate Providers, Banks, Law Firms, Accounting Firms, Insurance Companies, Hospitals, Schools and in general DPOs of all organisations
- Employees of Investment Firms, Investment Funds, ASPs, Trust Service Corporate Providers, Banks, Law Firms, Accounting Firms, Insurance Companies, Hospitals, Schools and in general of all organisations involved in the processing of personal data
- Internal Auditors
- Senior managers
It is also suitable to professionals pursuing regulatory CPD for the renewal of the “Basic” and “Advance” CySEC Certificate.
The course is offered fully online using a self-paced approach. The learning units consist of power point presentations and examples. Learners may start, stop and resume their training at any time.
At the end of the course, participants take a Quiz to complete the course and earn a Certificate of Completion once the Quiz has been passed successfully.
Accreditation and CPD Recognition
The course can be accredited by regulators and other bodies for 2 CPD Units that require CPD training in financial and other regulation.
Eligibility criteria and CPD Units are verified directly by your association or other bodies in which you hold membership.
Registration and Access
To register to this course, click on the Take this course button to pay online and receive your access instantly. If you are purchasing this course on behalf of others, please be advised that you will need to create or use their personal profile before finalizing your payment.
Access to the course is valid for 60 days.
If you wish to receive an invoice instead of paying online, please Contact us by email. Talk to us for our special Corporate Group rates.
Andreas Nicolaides has more than 8-years experience in the financial Industry. He is the Operations Manager of G.P. GLOBAL LTD offering consulting services and training courses to Investment Firms, Administrative Service Providers and Funds focuses in Internal Audit, compliance & AML issues. He is a member of the Internal Audit team of G.P. GLOBAL LTD and is involved in numerous Internal Audits of Cyprus Investment Firms, Administrative Service Providers and Funds where he is engaged, among others, in the audit for compliance with the GDPR regulatory framework. He has completed a number of trainings on GDPR regulatory framework and assisted a number of Cyprus Investment Firms, Administrative Service Providers and Funds to comply with their GDPR legal obligations.
Andreas Nicolaides holds a BA in Business Management from the Northumbria University (Newcastle – UK). Andreas also holds an Advance and Money Laundering certificate from the Cyprus Securities and Exchange Commission for the provision of investment services/activities.
See more Courses from Andreas Nicolaides