95 Data Protection Officer (DPO) courses in Cardiff delivered Live Online

The LAA operates a strict compliance regime when it comes to auditing family controlled work matters, and mistakes can often result in a Contract Notice, corrective action, and further follow-up activity within 6 months. This course will discuss the various aspects of family controlled work billing, with discussions on topics such as how to bill private law, public law, and help with mediation matters; how to evidence whether substantive negotiations and a settlement have taken place in private law matters; how do the LAA audit travel and other disbursement claims; what evidence must be present on files to avoid any issues on audit – including scope, gateway evidence, and forms/evidence of means (rules on evidence of means will be included in brief, however, a separate, more in-depth Civil Means Assessment Guidance Course is available); and the rules on claiming separate matters and escape fees. Key aspects of the Civil Contract and associated LAA Guidance (including the Codes Guidance) will be included, along with a discussion of common errors that are made. Target Audience This online course is aimed at anyone involved in billing Family Controlled Work matters or managing an LAA Family Contract. Resources Course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Steve Keeling, Consultant, DG Legal Steve joined DG Legal after leaving the Legal Aid Agency in August 2016. In his 17 years at the LAA, he worked in the audit team as both auditor and manager and was a Contract Manager for several years. Steve is also a certified SQM auditor and undertakes audits on behalf of Recognising Excellence as well as running training sessions for the SQM Audit Team periodically.

Duration 2 Days 12 CPD hours This course is intended for A prior understanding of EU Data Protection legislation is recommended. Candidates are typically management professionals and decision-makers who already have responsibility for data protection compliance within their organisation.Co-Requisite Subjects Candidates should have a good understanding of their own organisation?s data management activities through the life cycle from initial acquisition, through the various areas of processing and usage, to eventual removal or destruction. Overview To equip the learner with a foundational understanding of the principles of the General Data Protection Regulation (GDPR) and to provide constructive suggestions on implementing compliant processes. The social, historical and legal background leading to the General Data Protection Regulation (GDPR) The scope and global context of the GDPR The key concepts within the GDPR The definition of all key words and phrases relating to this Data Protection regulation Principle One: The criteria governing fair, open and transparent processing of personal data Principle Two: Purpose Limitation, the challenge of limiting the processing within the context of specified and lawful purposes Principle Three: Minimisation of processing, and ensuring that only that data is processed which is necessary to achieve the purpose. Principle Two: Purpose Limitation, the challenge of limiting the processing within the context of specified and lawful purposes Principle Three: Minimisation of processing, and ensuring that only that data is processed which is necessary to achieve the purpose. Principle Four: Ensuring that any personal data held by the organisation is kept accurate and current, and that any processing of such data is appropriate Principle Five: Management and storage of personal data in a manner that meets regulatory obligations, while minimising the time that the individual remains identifiable Principle Six: The criteria governing safe, secure and confidential processing of personal data in order to protect its integrity Principle Seven: The key roles, responsibilities and accountabilities of those involved in Data Management within an organisation Establishment within a single Member State Joint Controllers Privacy by Design and by Default Nominated Representatives Third-party Contracts and shared liability Logging of data management processes Data Breach Notification obligations Privacy Impact Assessments Overseas transfer of personal data L2.8 The Data Subject Rights, and their implications for the Data Controller and the Data Processor L2.8.1 The ?right to be forgotten? L2.8.2 The right to restriction of processing L2.8.3 The right to object to certain processing L2.8.4 The right to have inaccurate data amended or erased L2.8.5 The right to data portability L2.8.6 The right of access to one?s personal data L2.8.7 Rights in relation to automated decision-making and profiling The role of the Data Protection Officer (DPO) The role of the Data Protection Officer (DPO) Criteria for designating a DPO Tasks of the DPO Position of the DPO within the organisation The role of the Supervisory Authority within the Member State The Lead Supervisory Authority and independence Investigative, corrective and advisory powers Independence of the Supervisory Authority Collaboration with other Supervisory Authorities Codes of Conduct and Certification The role, powers and tasks of the European Data Protection Board (EDPB) The remedies, liabilities and penalties available under the GDPR Right to raise a complaint Right to representation Right to effective judicial remedy Right to compensation and liability Administrative fines of up to ?10m or 2% of GAT Administrative fines of up to ?20m or 4% of GAT Provisions for specific processing situations Freedom of Expression Processing of official documents Processing of National Identification Numbers Processing regarding employment Processing for archiving purposes Processing under obligations of official secrecy Processing of data by religious organisations Preparing for implementation of the GDPR Review of data management policies and procedures Review of data assets and security structures Training and Awareness-raising Data management governance structures Embedding Privacy By Design and Default Codes of Conduct and Certification against standards Breach detection and notification procedures Review of third-party agreements, contracts

  The IECB Certified Data Protection Officer training course will help you acquire the knowledge and skills to serve as a Data Protection Officer (DPO), allowing you to help organizations understand and implement solutions that meet the compliance requirements of the General Data Protection Regulation (GDPR), as well as a number of other regulatory requirements. The course takes a practical look at the GDPR requirements and advises on the mapping of solutions. In this way, delegates can master the role of the DPO and become competent to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority. About This Course   After attending the training course, you can sit for the exam, and gain the 'Certified Data Protection Officer' credential, which validates that you have the Legal and regulatory knowledge required of a key adviser and practical knowledge to advise organisations how to meet their obligations regarding the GDPR compliance   Learning Outcomes; Acquire a thorough understanding of the basic concepts and components of global Data Protection Regulation(s) Understand the correlation between the General Data Protection Regulation and best practice standards such as ISO 27701 Acquire a thorough understanding of the data protection by design requirements, particularly in relation to the protection of data Interpret the data protection requirements within the context of an organization Understand how to support an organization to plan, implement, manage, monitor and maintain ongoing compliance to the GDPR   Our approach  This training course is based on the practical application of best practices used in exercising the role of the DPO. Course modules include practical examples of the role of DPO. Delegates are encouraged to engage in discussions and exercises. A Case Study which brings the materials to life.   Course agenda   Day 1: Introduction to the GDPR Principles Day 2: The role of the DPO in the determination of a GDPR compliance program Day 3: The role of the DPO in business operations Day 4: Monitoring and maintenance of the GDPR compliance programme, as well as the examination   Prerequisites   A basic understanding of the GDPR will benefit course delegates.  What's Included?   Refreshments & Lunch (Classroom only) Course Slide Deck Official Study Materials CPD Certificate The Exam fees Who Should Attend?   Individuals seeking to move into the role of DPO Team members who define, implement, and maintain a GDPR compliance programme Information Security Managers responsible for the personal data protection of an enterprise and the management of its risks Members of an information security, risk management, or Data Governance team Our Guarantee   We are an approved IECB Training Partner. You can learn wherever and whenever you want with our robust classroom and interactive online training courses. Our courses are taught by qualified practitioners with commercial experience. We strive to give our delegates the hands-on experience. Our courses are all-inclusive with no hidden extras.  The one-off cost covers the training, all course materials, and exam voucher. Our aim: To achieve a 100% first time pass rate on all our instructor-led courses. Our Promise: Pass first time or 'train' again for FREE. *FREE training offered for retakes - come back within a year and train for free, with the exam retake included too. Assessment   All candidates at official training courses will be offered the opportunity to sit the associated exam. For CDPO, this constitutes a 12 question essay type exam which should be completed within 240 minutes. A passing score is achieved at 70%. Accreditation Provided by   This course is Accredited by NACS and Administered by the IECB.

This course satisfies the supervision requirements in the LAA Standard Contract & covers the key skills needed to ensure compliance with the LAA Contract.

GDPR Practitioner

Course Overview This comprehensive course is designed to provide a well-rounded understanding of GDPR compliance, data protection frameworks, and key cyber security legislation in the UK and beyond. Covering topics from legal obligations under the General Data Protection Regulation to the implications of cyber crime on modern business, this programme equips learners with the knowledge needed to navigate the increasingly regulated digital landscape. Whether you are responsible for handling sensitive data or advising on compliance procedures, this course offers vital insight into maintaining data integrity and organisational transparency. Upon completion, learners will be able to interpret key legal requirements, identify risk areas, and support best practices within their professional setting. Course Description The GDPR Compliance, Data Protection & Cyber Security Law course explores a range of essential subjects that influence today’s data-driven industries. Learners will gain a strong foundation in legal and regulatory aspects of data handling, including the principles of GDPR, cyber law, and anti-money laundering frameworks. The course also includes modules on commercial and business law to deepen understanding of corporate responsibilities in data management. Ideal for legal assistants, compliance officers, or business managers, this course helps learners enhance their ability to assess data security measures and ensure alignment with current regulations. With a structured curriculum and accessible learning materials, this programme supports learners in achieving a robust legal and regulatory understanding. Course Modules: Module 01: GDPR Module 02: Data Protection Module 03: Paralegal Training Module 04: Commercial Law Module 05: Cyber Law Online Course Module 06: Business Law Module 07: Cyber Security Awareness Training Module 08: Anti-Money Laundering (AML) Training (See full curriculum) Who is this course for? Individuals seeking to understand GDPR and data security regulations. Professionals aiming to improve compliance and data governance within their roles. Beginners with an interest in legal and cyber regulatory frameworks. Business owners, managers, or HR personnel responsible for policy implementation. Career Path Data Protection Officer (DPO) Compliance Consultant Cyber Security Policy Advisor Paralegal in Commercial or Cyber Law Information Governance Analyst Risk and Compliance Coordinator Legal and Regulatory Affairs Assistant

Course Overview The GDPR Certificate course provides an essential foundation for understanding the General Data Protection Regulation (GDPR) and its implications for businesses and individuals. This course offers a comprehensive guide to GDPR principles, legal obligations, and the responsibilities of data controllers and processors. Learners will develop a strong grasp of compliance strategies, risk management practices, and data subject rights. By completing this course, individuals will gain the knowledge needed to support GDPR compliance within organisations, enhancing both personal expertise and professional credibility. The course is designed to be accessible and engaging, making it ideal for those entering data protection roles, as well as professionals seeking to update their knowledge. Upon successful completion, learners will be better equipped to contribute to organisational governance, reduce compliance risks, and promote ethical data handling practices across various industries. Course Description This GDPR Certificate course delves deeply into the key areas of General Data Protection Regulation, offering a structured exploration of its background, core principles, and practical application. Learners will study topics such as lawful bases for processing, data subject rights, breach management, and the roles of the Information Commissioner's Office (ICO). The course also covers organisational responsibilities including data protection impact assessments (DPIAs) and record-keeping requirements. Designed to provide a professional and comprehensive learning experience, this course builds analytical skills and regulatory awareness, preparing individuals to address GDPR obligations confidently. Through detailed explanations and real-world scenarios, learners will develop the ability to interpret legislation, support compliance strategies, and foster a culture of data protection within their workplace. The course is well-suited for a wide range of learners, from complete beginners to professionals needing formalised GDPR training to enhance their career prospects. Course Modules Module 01: Introduction to GDPR Module 02: Key Terms and Definitions Module 03: Principles of Data Processing Module 04: Rights of Data Subjects Module 05: Lawful Bases for Data Processing Module 06: Roles and Responsibilities of Data Controllers and Processors Module 07: Data Protection Impact Assessments (DPIAs) Module 08: Data Breach Management and Notification Module 09: Accountability and Record Keeping Module 10: Enforcement, Penalties, and the Role of the ICO (See full curriculum) Who is this course for? Individuals seeking to understand and apply GDPR principles. Professionals aiming to ensure their organisation’s data compliance. Beginners with an interest in data protection and privacy regulations. Compliance officers, administrators, or managers looking to enhance regulatory knowledge. Business owners wishing to safeguard organisational data practices. Career Path Data Protection Officer (DPO) GDPR Compliance Specialist Information Governance Officer Legal and Compliance Consultant Risk and Compliance Analyst Data Privacy Advisor Administrative roles requiring data protection expertise

The professional working world has changed more rapidly than could have been envisaged at the time of the introduction of GDPR and the Data Protection Act 2018. With more people working from home post-Covid and the ever increasing risk of cyber-attacks, this short course is aimed at taking stock of current practice and risk, as well as considering ICO enforcement action and the implications of hybrid working. It is also a great recap on the rules as they stand and what you need to know to comply. The course will cover: UK GDPR - A timely reminder of the rules ICO enforcement action and what we can learn Data Protection Impact Assessments - when and how to do them Hybrid working and UK GDPR Managing cyber attacks from a UK GDPR perspective Target Audience The online course is suitable for staff of all levels, from support staff to senior partners. Resources Course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Matthew Howgate, Consultant, DG Legal Matt is a non-practising solicitor who has considerable experience in regulatory issues and advising on complex issues of compliance and ethics. He is also an expert in data protection, UK GDPR and on the civil legal aid scheme. Matthew is a lead trainer on and co-developed the LAPG Certificate in Practice Management (a training programme for legal managers and law firm owners) as well as regularly providing training on legal aid Supervision, costs maximisation, data protection and security and on general SRA compliance.

Understanding and applying the rules on means assessment and providing the right evidence can be difficult given the many various circumstances that must be accounted for with each client. This course will discuss the key aspects of the LAA’s Means Assessment guidance, with discussions on topics such as whose resources should be considered; rules on income, deductions, and capital; evidence requirements - and common errors that are made; rules on allowances (e.g. subject matter of dispute; and how to find and interpret guidance for less common circumstances (e.g. self-employed clients). Means Assessment Guidance is often the same for controlled work and licensed work, but there are some subtle differences on occasion, and the course will highlight some of the main differences in rules. Target Audience This course is aimed at anyone involved in making civil legal aid applications or assessing civil legal help work for financial eligibility. Resources Course notes will be provided to all delegates which may be useful for ongoing reference or cascade training. Please note a recording of the course will not be made available. Speaker Steve Keeling, Consultant, DG Legal Steve joined DG Legal after leaving the Legal Aid Agency in August 2016. In his 17 years at the LAA, he worked in the audit team as both auditor and manager and was a Contract Manager for several years. Steve is also a certified SQM auditor and undertakes audits on behalf of Recognising Excellence as well as running training sessions for the SQM Audit Team periodically.

5-day intensive data protection course, delivered by a specialist.