Data Protection Training
- the Data Protection Act 2018 and UK-GDPR (General Data Protection Regulation)
Do you deal with any personal data in the course of your work? If so, you need to know more about the General Data Protection Regulation and the Data Protection Act 2018 (collectively referred to as Data Protection legislation) and how it applies to your role at the University. The training is being provided to protect members of staff, the University and ultimately the individuals whose personal data we process. No-one wants to be involved in a personal data breach or information security incident!
Come to our next training session for a ‘whistle-stop’ tour of your rights and responsibilities as a member of staff.
This event provides an overview of the new Data Protection legislation and includes specific topics of interest to colleagues e.g. e-marketing, and new requirements for consent and privacy notices.
Facilitated by:
Diana Watt, Information Governance Manager
Duration: 1 hour, as part of the Information Governance Briefing sessions
Provider Details: Governance Services, dataprotection@napier.ac.uk, ext. 6257
Who should attend:
All new members of staff are expected to attend an initial Information Governance Briefing session as part of their induction. Online training must also be completed as part of induction and again annually as a refresher session - this is mandatory training for all University employees.
Main description:
As every member of staff processes personal data, all staff need to know about the University’s compliance obligations and ensure they are equipped to deal with those arising in their role/area.
This event will cover the following topics:
· Expanded definition of personal data (data you didn’t consider to be ‘personal’ e.g. IP addresses, may now be included, which means you need to provide appropriate security and handling measures to it)
· Requirements to demonstrate compliance and accountability
· Privacy by design and security
· Expanded data subject rights
· New requirements for consent and expanded privacy notices
· What to do when sharing data
· Reviewing all contracts where data is shared and where data is processed outside the UK
· How do we plan for implementation and what we can do now.
Current/topical issues will be included in these interactive sessions and there will be opportunities for Qs & As. Links to comprehensive advice and guidance and actions to follow up after a briefing session will also be provided.
Session outcomes for participants are to:
• Be clear about their responsibilities under the new Regulation
• Recognise the practical data protection issues and risks in their area
• Know where to go for advice & guidance
Current Dates
You can find details of upcoming sessions and book on via HR Connect http://staff.napier.ac.uk/learningevents/Pages/Default.aspx?SearchFilter=D
Online Training
You can complete the online training module here or you can access it via:
All Programs > Apps Anywhere > Categories > Health and Safety > Essential Skillz
Departmental Briefing Sessions
Governance Services are also able to offer team briefing sessions where we can come along to a team meeting to brief colleagues and discuss issues in a team context. Please email us at dataprotection@napier.ac.uk if you would like to arrange one of these sessions for your team.
Other resources available:
The UK Information Commissioner's Office (ICO) has many resources available, including videos: https://www.youtube.com/user/icocomms
Page last reviewed 21 Feb 2022