0345 4506120

Data Protection Act to GDPR Practitioner Certificate

This course is intended for Data Protection Officers holding a practitioner level qualification, such as the BCS Certificate or similar. Those new to the subject are advised to gain a solid grounding in DPA, PECR and the EU Data Protection Directive before looking to advance their knowledge of GDPR.

Building on an existing base, our 3-day DPA to GDPR Practitioner Certificate offers a detailed examination of the fundamental differences between the Data Protection Act and the General Data Protection Regulations. The course asks participants to compare, evaluate, and understand the concepts of GDPR. In doing so, the aim is to equip attendees with the skills required to develop, implement and maintain a relevant sector-specific GDPR compliance programme.

The course demonstrates award holders are suitably qualified to fulfil the role of mandatory Data Protection Officers (DPO) within public bodies and commercial organisations under GDPR.

We don't currently have any courses listed for Data Protection Act to GDPR Practitioner Certificate, would you like to view all courses for Data Protection & GDPR?

Learning Objectives

By obtaining the Practitioner Certificate, individuals will be able to:

  • Understand the variations in the terminology between DPA, PECR and GDPR
  • Identify the definitions, criteria and methodologies of GDPR
  • Explain the GDPR Principles and the Rights of Data Subjects
  • Fulfil the responsibilities of mandatory appointed Data Protection Officers
  • Conduct DP Audits and Data Protection Impact Assessments
  • Develop data protection policies and implement procedures for
    • Consent
    • Complaint handling
    • Data breach notification to the Supervisory Authority and individuals affected
    • Overseas Data Transfers
    • Data processing contracts
  • Continually address compliance obligations during the transition from DPA to GDPR


BCS Practitioner Certificate in Data Protection

Course Content

  • Data Protection Act to GDPR
    • Introduction – Purpose of the Regulations
    • Steps 1 & 2 from the ICO’s 12 steps to take now
      • Awareness
      • Information Asset List
  • General Provisions
    • Subject matter and objectives Article 1
    • Material scope Article 2
    • GDPR Definitions Article 4
    • GDPR Characters
  • GDPR Principles
    • Principles relating to processing personal data Article 5(1)
    • Accountability requirement Article 5(2)
    • Principles 1 Lawfully, fairly and transparent Article 5(1)(a)
      • Lawfulness of processing
      • Consent
      • Special categories
      • Processing of criminal convictions and offences
    • Principle 2 – Purpose limitation
    • Principle 3 – Data Minimisation
    • Principle 4 – Accuracy
    • Principle 5 – Storage Limitations
    • Principle 7 – Integrity and confidentiality
  • Rights of the Data Subject (Principle 6 DPA)
    • Right to be informed
    • Right of Access
    • Rectification and erasure
      • Right to Data Portability
    • Right to object and automated decision-making
    • National derogations
  • Controller and Processor
    • General responsibilities
    • Data Protection by design and default
    • Security of personal data
      • Notification of data breach to Supervisory Authority
      • Notification of breach to data subject
      • Data Protection Impact Assessment PDIA
    • Data Protection Officer
    • Codes of conduct and Certification
  • Transfer of personal data to third countries (DPA Principle 8)
    • General principle for transfers
    • Assessing adequacy
    • Transfers with appropriate safeguards
    • Binding Corporate Rules
    • Derogations
  • Independent supervisory authorities
  • Cooperation and consistency
    • Mutual assistance
    • Joint operations
  • Remedies, liabilities and penalties
    • Right to lodge a complaint with the supervisory authority
    • Right to judicial remedy against Supervisory Authority
    • Right to judicial remedy against a controller or processor
    • Right to compensation and liability
    • Imposing administrative fines

Exams & Certification

You will receive a Certificate of Achievement on successful completion of the course.

Privacy Notice

In order to provide you with the service requested we will need to retain and use your contact information in accordance with our Privacy Notice. If you choose to provide us with this information you explicitly consent to us using the information as necessary to provide the request service to you. If you do not agree please do not proceed to request the service from us.

Marketing Permissions

Would you like to receive our newsletter and other information on products and services which we think will be of interest to you by email. We will always treat your information with care and in accordance with our Privacy Notice. You are free to withdraw this permission at any time.


Online Courses

You may prefer an online course if you are looking for a flexible and cost-effective solution. Online courses allow you to study at your own pace, at a time that suits you.

We have the following eLearning options available:

Our Customers Include