Data & Privacy Training
Data protection laws move at speed, and keeping up with the changes can be a real challenge. All of our training is practical, engaging and interactive, and can be tailored to your interests and the requirements of your business.
Who should attend?
Those primarily interested in the GDPR, the Data Protection Act 1998 and the Privacy and Electronic Communications (EC Directive) Regulations 2003.
We provide training for stakeholders across your business, from sales and marketing managers to HR managers, IT and finance professionals as well as in-house lawyers.
Format of the training sessions
We provide tailor made in-house data protection training for your organisation and can provide workbooks and checklists to take away. Training sessions can be of any length, from one hour to a full day, and can cover any data protection law topic of your choice.
They can be delivered in-house or at our premises in London, Oxford, Cardiff, Dublin or Hong Kong.
During a time of working remotely and social distancing, training on key topics and connecting with colleagues and peers is more important than ever, as well as an opportunity to engage employees who are furloughed. We offer live online training courses through Webex.
The cost will depend on the duration of the session and the elements you would like to cover, but will always be agreed with you in advance.
The Insider Threat training
Your staff are your greatest asset. But they can also be your biggest risk.
Whilst the judgment of the Supreme Court in the Morrisons case is welcome (our article on the key implications can be read here), this should still be seen as a wakeup call for data controllers regarding 'The Insider Threat' in their organisations; i.e. when the threat you are defending against comes from one of your own people.
Lewis Silkin’s Data & Privacy Group offer a table top/scenario based exercise, which addresses data breach response and draws on the learnings from Morrisons. An example of the scenario guide can be seen here. The session is designed to run through the following questions:
- What are the legal/non-legal issues?
- What should you do?
- How would you assess risk?
- What reporting should you consider?
- How should you close the incident?
- What controls might improve your security posture?
Please contact us to explore the benefit of our 'Insider Threat' training exercise for your business.
Data protection training - general
We can provide training covering any of the following topics, either as standalone training or in combination. To view what is covered in full for each of the training topics, download our brochure here.
- data protection law basic concepts
- marketing use of data: An Introduction to the Privacy & Electronic Communications (EC Directive) Regulations 2003
- an introduction to the GDPR
- becoming GDPR compliant for your business
- handling Subject Access Requests
- BYOD to the workplace
- use and abuse of social media in the workplace
- data security issues and ISO 27001
- how to avoid, prepare for and deal with data security breaches
- data protection officer role and duties
- rules relating to international data transfers
- data protection for health staff
- data protection for marketing staff
- data protection for employment and HR staff
- using third party processors or outsourcers
- carrying out data retention audits and safe data destruction
- carrying out privacy impact assessments and data protection audits
- user profiling and targeting
For work place data privacy and protection we run a selection of e-learning courses to help educate employers and employees. You can view a demonstration of the data awareness e-learning class online.
In House Data Club: Tech Solutions to Covid-1911 May 2020
Please join us for our third In House Data Club of 2020 where we will discuss how data controllers can navigate the data & privacy implications of the use of tech “solutions” to Covid-19.
In-house Data Club: Implications of the Morrisons case with Anya Proops QC07 May 2020
Please join us for our second (albeit virtual) In House Data Club of 2020 where we will discuss the implications of the Supreme Court’s judgement in Morrisons including hearing from Anya Proops QC, lead counsel for Morrisons in the case.
Cookie consent is a box-ticking exercise after all!16 October 2019
ICO: Update Report into Ad Tech and RTB18 September 2019
On 20 June 2019 the UK’s data protection regulator issued a progress report setting out her initial concerns about the use of personal data in the ad tech sector – which she describes as “immature in its understanding of data protection requirements” – in particular when it comes to real time bidding (RTB).
The Law, the ‘Outlaws’ and Ad Tech’s O.K. Corral26 June 2019
Programmatic advertising is often likened by commentators to the Wild West: some because they consider it to be a lawless place where anything goes; others because it pushes boundaries and is creating a new frontier. Wherever you stand on that metaphor, ad tech is looking like it’s about to have its own ‘Gunfight at the O.K. Corral’ moment – a shootout in the EU prompted by a long-simmering feud between privacy’s ‘lawmen’ and the advertising industry’s ‘outlaws’ finally boiling over.
A Trailer for GDPR Season 2: Creating a ‘Culture of Accountability’19 June 2019
In our previous article*, we looked at some key scenes from the first season of the GDPR. This next part takes a peak at what’s likely to be the main plot for season 2 (spoiler alert).
GDPR Season 1: Off to a Slow Start?30 May 2019
Like winter in the popular HBO series Game of Thrones, privacy professionals warned that ‘GDPR is coming’ many months, years even, before the army of supervisory authorities (SAs) and data subjects started to amass on their doorsteps. For the most part, the warning fell on deaf ears. It was only when the first snows had already started to fall, signalling the imminent arrival of winter, that GDPR preparations began in earnest – with panic soon turning into hysteria, for some.