Data Protection Officer (DPO)

The General Data Protection Regulation (GDPR) is a regulation that will enforce a stronger data protection regime for organizations that operate in the European Union (EU) and handle EU citizens’ data.

Why should you attend?

As data protection is becoming more and more valuable, the need for organizations to protect these data is also constantly increasing. Besides violating the fundamental rights and freedoms of persons, not complying with the data protection regulations can lead to risky situations that could harm an organization’s credibility, reputation, and financial status. This is where your skills as a data protection officers come to place. 

PECB

Who should attend?

  • Managers or consultants seeking to prepare and support an organization in planning, implementing, and maintaining a compliance program based on the GDPR
  • DPOs and individuals responsible for maintaining conformance with the GDPR requirements
  • Members of information security, incident management, and business continuity teams
  • Technical and compliance experts seeking to prepare for a data protection officer role  
  • Expert advisors involved in the security of personal data

Learning objectives

  • Understand the concepts of the GDPR and interpret its requirements
  • Understand the content and the correlation between the General Data Protection Regulation and other regulatory frameworks and applicable standards, such as ISO/IEC 27701 and ISO/IEC 29134
  • Acquire the competence to perform the role and daily tasks of the data protection officer in an organization
  • Develop the ability to inform, advise, and monitor compliance with the GDPR and cooperate with the supervisory authority

Educational approach

  • This training course is based on both theory and best practices used in exercising the role of the DPO.
  • Lecture sessions are illustrated with practical exercises based on a case study which include role-playing and discussions.
  • The participants are encouraged to intercommunicate and engage in discussions and exercises.
  • Practice exercises and quizzes are similar to the certification exam.

Prerequisites

Participants attending this training course are required to have a fundamental understanding of the GDPR and comprehensive knowledge of data protection requirements.

Course agenda

Day 1: Introduction to the GDPR concepts and principles 

Day 2: Designation of the DPO and analysis of the GDPR compliance program

Day 3: DPO operations

Day 4: Monitoring and continual improvement of GDPR compliance

Day 5: Certification exam

Examination

The “PECB Certified Data Protection Officer” exam complies with the PECB Examination and Certification Program (ECP) requirements. The exam covers the following competency domains:

  • Domain 1: Data protection concepts, General Data Protection Regulation (GDPR), and compliance measures
  • Domain 2: Roles and responsibilities of accountable parties for the GDPR compliance
  • Domain 3: Technical and organizational measures for data protection

In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.

For specific information about exam type, languages available, and other details, please visit the Examination Rules and Policies.

Certification

After successfully passing the exam, you can apply for the credential shown in the table below. You will receive the certificate once you comply with all the requirements related to the selected credential. Certification fees are included in the exam price.

For more information about the PECB Data Protection Officer certification scheme and the PECB certification process, please refer to the Certification Rules and Policies.

The requirements for PECB Data Protection Certifications are:

Credential Exam Professional experience DPMS project experience Other requirements
PECB Certified Provisional Data Protection Officer PECB Certified Data Protection Officer Exam None None Signing the PECB Code of Ethics
PECB Certified Data Protection Officer PECB Certified Data Protection Officer Exam or equivalent Five years: Two years of work experience in Data Protection Data Protection activities: a total of 300 hours Signing the PECB Code of Ethics

To be considered valid, these activities should follow best data protection practices and include the following:

  1. Assisting in applying the GDPR requirements 
  2. Monitoring a GDPR compliance program 
  3. Providing advice on the data protection impact assessment 
  4. Monitoring a data protection project with regard to the processing of personal data in alignment with the GDPR

General Information

  • Participants will be provided with the training course material containing over 450 pages of explanatory information and practical examples.
  • An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.

Course Dates and Prices