In many companies Privacy has been neglected for many years. Data was still stored, although they were no longer needed. For companies, this has formed “data cemeteries” with personal data that has not been deleted but is no longer in use. Often people are uncertain if the data may be needed again later.
Prior to the introduction of the GDPR, these circumstances were widely accepted, but since May 25, 2018, the understanding of data protection has changed fundamentally. Data protection authorities supervise companies more often and impose heavy fines. Data subjects also request information or insists the deletion of personal information. If the company does not fulfill these requests in a short period of time, the data subjects file a complaint at the data protection authority.
For entrepreneurs, the General Data Protection Regulation means, that existing business processes have to be adapted. Deletion periods, data subject rights, data lifecycle management, legal foundations, security of processing, record of processing activities and many more issues have to be solved by the management. Without external support, the requirements of data protection can not be met.
However, privacy is not an issue of the management alone but affects everyone in the company. The best processes are ineffective if the employees do not comply with the specifications. Therefore, training is required for those employees who work with personal data.
In our workshop, you will learn how to comply with the defined processes, prevent data leaks or to deal with data subject requests. The compilation of the obligatory record of processing activities can also be done by an employee after the training.
We currently offer the following data protection trainings: