0845 450 6120

Certified EU General Data Protection Regulation (GDPR) Practitioner - IBITGQ

Learn how to be GDPR compliant and fulfil the role of a DPO

The four-day Certified EU GDPR Practitioner course builds on the GDPR Foundation qualification to equip participants with the knowledge and operational skills to build, implement and manage a compliance programme under the GDPR and successfully fulfil the role of the DPO.

The course focuses on the application of the Regulation, how the data protection principles work in practice, the policies and procedures necessary, and practical guidance on how to implement an effective privacy and information security compliance programme. This includes using:

    • A real-life case study to demonstrate best practices and methodologies;
    • A data protection impact assessment (DPIA) tool to help assess and address privacy risks; and
    • A GDPR compliance gap assessment tool to help prepare a compliance plan.

The tools are included free of charge for all participants to use in the workplace.

Accredited GDPR training and certification

Course certification will help individuals to demonstrate competency in data protection compliance and the required knowledge to fulfil the role of a DPO under the GDPR.

Participants who pass the course exam are awarded the ISO 17024-accredited EU GDPR P qualification by IBITGQ. It is also accredited by the Institute of Information Security Professionals (IISP) and satisfies the IISP Skills Framework requirements at Level 1: A1, A2, A3, A4, A5, A6, A7, B1 and C2.

Please note that you must have passed the Certified EU GDPR Foundation exam before you can attend this course.

Who should attend this course?

Managers with responsibility or involvement for making sure their organisations become GDPR compliant, such as:

  • Privacy managers;
  • Data protection managers;
  • Information security managers;
  • IT managers;
  • Project managers;
  • Corporate governance managers;
  • Risk and compliance managers;
  • General or privacy counsels; and
  • Individuals with little experience but who wish to enter the field of data protection with a professional qualification.

Courseware includes:

    • A real-life case study;
    • A DPIA tool;
    • A GDPR compliance gap assessment tool; and
    • Course slides.

The tools are included free of charge for all attendees to use in the workplace.


Learning Objectives

This training course will provide delegates with detailed knowledge of the GDPR and its various provisions, offering practical implementation advice and guidance on the more technical aspects of data security.

Delivered by experts in the fields of data protection legislation and information security, the course combines practical application with theory to provide a solid grounding for real-world implementation.

Successful completion of the course demonstrates to employers that the candidate possesses essential knowledge of the GDPR, and a sound understanding of the practical implications and applications.


For those with little or no knowledge of the GDPR, attendance of the EU GDPR Foundation training course is recommended. In addition it is compulsory for delegates to have passed the Foundation course before attending the practitioner course.

Please note that from 1 November 2017, EU General Data Protection Regulation (GDPR) Foundation and Practitioner exams will only be available as online exams. If you wish to take the exam at the end of the course, you will need to bring a laptop or tablet to the venue. (Full details on how to access the exam will be provided.)

If you would prefer to take the exam at a later date, please let us know beforehand and we will provide you with an exam voucher (valid for six months) that will allow you to sit the exam remotely, at a time of your choosing.

All IBITGQ exams will follow the above format from 1 January 2018

Course Content

What will you learn about?

  1. The role of the DPO.
  2. What constitutes personal data.
  3. Accountability, the privacy compliance framework and a PIMS (personal information management system).
  4. Lessons to be learned from common data security failures.
  5. The six data protection principles – how to apply them and demonstrate compliance.
  6. The security of personal data.
  7. An organisational risk management framework.
  8. Legal requirements for a DPIA.
  9. How to conduct a DPIA with a DPIA tool.
  10. Why and how to conduct a data mapping exercise.
  11. The rights of data subjects.
  12. Giving and withdrawing consent.
  13. Handling data subject access requests.
  14. The roles of controllers and processors, and the relationships between them.
  15. Transferring personal data outside the EU and the mechanisms for compliance.
  16. How to prepare for GDPR compliance using a compliance gap assessment tool.

Exams & Certification


Attendees take the EU GDPR P exam at the end of the course – a 90-minute, multiple-choice, ISO 17024-accredited exam set by IBITGQ. There is no extra charge for this exam.

This course is part of our unique EU GDPR learning path, which also includes the Certified EU General Data Protection Regulation Foundation (GDPR) Training Course. It also supports continued professional development programmes by qualifying for 28 CPD/CPE credits.

One Month
Two Months
Three Months
More than Three Months
PRINCE2 Foundation & Practitioner
MSP Foundation & Practitioner
APMP Certificate
ITIL Foundation
Scrum in One Day
Certified ScrumMaster
ISTQB Software Test Foundation
Microsoft Project
BCS Business Analysis Practice
Other - Please Specify Below

Online Courses

You may prefer an online course if you are looking for a flexible and cost-effective solution. Online courses allow you to study at your own pace, at a time that suits you.

We have the following eLearning options available:

Virtual Classroom

Virtual classrooms provide all the benefits of attending a classroom course without the need to arrange travel and accomodation. Please note that virtual courses are attended in real-time, commencing on a specified date.

Virtual Course Dates

Our Customers Include