Certificate in Data Protection & GDPR for Governors and Trustees (2021-22)

Course Duration: 120 minutes (approx.)

The ultimate responsibility and accountability for data protection compliance sits with governors and trustees. They should have specific knowledge of data protection relevant to their role to ensure compliance with legislation and the ability to respond to any changes, working closely with the Data Protection Officer (DPO). If your school is found to breach GDPR rules, you may face a hefty fine and a visit from the Information Commissioner’s Office.

Our essential CPD course in data protection provides you with the core content you need to ensure you are complying with your legal responsibilities in protecting personal data. Delivered in high-quality video CPD format that has been skilfully organised for busy workloads and is accessible on any device, anytime, anywhere, our training has been designed to provide maximum learning potential in the leanest, most cost-effective and most time-efficient manner. 

Delivered by retired police officer and associate lecturer, Dr. Kai Adegbembo, this course has been divided into five easy-to-digest modules. The course consists of learning through video modules, completion of tasks, further reading and viewing external resources. Please consider this when planning and allocating your time. To successfully understand and achieve the objectives from the course, learners are expected to engage in all aspects of the learning process and complete all relevant activities to ensure they can successfully apply the knowledge and skills they have gained in their own setting.

This course has been designed in line with the following policies:

• Data Protection Act 2018
• Data Protection: Toolkit for Schools (Department for Education)

Learning outcomes:

• Understanding what GDPR is and your legal responsibilities as set out in the Data Protection Act 2018.
• Identifying how to correctly collect, process, and store personal information and what your role is as part of the process.
• Recognising which pieces of personal data that you need to collect and why, which pieces of information are unnecessary, and how to identify the difference.
• Recognising the roles and responsibilities of the data protection officer and the senior information risk owner.
• Understanding the key principles of data protection and the rights of the data subjects whose data you have processed.

Course modules:

Module 1: Governors’ and trustees’ responsibilities

Module 1 will demonstrate what governors and trustees are responsible for in respect to data protection. You will learn with whom you should share certain pieces of data and how much should be shared.

Module 2: Understanding GDPR

Module 2 will cover GDPR and how it applies to your establishment. You will understand which pieces of personal data need to be collected as well as your legal requirements for keeping it safe.

Module 3: The principles of data protection

Module 3 will teach you the principles of GDPR with a focus on data minimisation, accountability, and accuracy. You will also understand the rights of the data subjects. Module 4: Information losses and data breaches Module 4 will focus on the different types of data loss and provide examples of serious data breaches. You will also learn best practices for responding to a report of information loss.

Module 4 – Information losses and data breaches

Module 4 will focus on the different types of data loss and provide examples of serious data breaches. You will also learn best practices for responding to a report of information loss.

Module 5: Accountability

Module 5 will cover your responsibilities as a school on protecting the personal data you have collected. It will focus on the role of the data protection officer (DPO), the senior information risk owner (SIRO), and the Information Commissioner’s Office (ICO).