Build EU GDPR data protection compliance from scratch

Course Curriculum

Chapter 1: Introduction

Lecture 1: Why start learning GDPR Data Privacy with me?

Lecture 2: What is included in this course?

Lecture 3: Course Resources

Lecture 4: My first promise to you – get certified in less than 30 days: CIPT, CIPM, CIPP/E

Lecture 5: One more word before we start…

Chapter 2: Understanding the need for privacy in IT environment

Lecture 1: Evolving compliance requirements

Lecture 2: Major Risks to a Company's IT Framework

Lecture 3: Application Related Risks

Lecture 4: Network Related Risks

Lecture 5: Storage Related Risks

Lecture 6: Stakeholder expectations for privacy

Lecture 7: Privacy vs Security

Lecture 8: IT Governance vs Data Governance

Lecture 9: The role of the IT professional & other stakeholders in preserving

Chapter 3: Core Privacy Concepts

Lecture 1: Privacy Foundational elements – Organizational Privacy Notice

Lecture 2: Privacy Foundational elements – Organizational Privacy Policy

Lecture 3: Example – A great organizational privacy policy

Lecture 4: Privacy Foundational elements – Organizational Security Policies

Lecture 5: Incident Response – Security and Privacy Perspectives

Lecture 6: System Development Lifecycle and Enterprise Architecture

Lecture 7: Privacy Impact Assessments (PIA)

Lecture 8: Common Privacy Principles

Chapter 4: Privacy Considerations & Techniques

Lecture 1: The Collection Process – Notice

Lecture 2: The Collection Process – Choice, Control & Consent

Lecture 3: Other topics related to Collection

Lecture 4: Use

Lecture 5: Security Practices and Limitations on Use

Lecture 6: Disclosure

Lecture 7: Retention – Records, Limitations, Access

Lecture 8: Retention – Security Considerations

Lecture 9: Destruction

Chapter 5: Privacy in Systems and Applications

Lecture 1: Identity and Access Management (IAM)

Lecture 2: Limitations of Access Mgmt & Least Privilege principle

Lecture 3: User Based Access Control & Role Based Access Control

Lecture 4: Context of Authority

Lecture 5: Cross Site Authentication & Authorization Models

Lecture 6: Credit card information & Processing

Lecture 7: PCI-DSS & PA-DSS

Lecture 8: Remote Access & BYOD – Privacy & Security Considerations

Lecture 9: Remote Access & BYOD – Access to Computers & Architecture controls

Lecture 10: Data Encryption – Design Considerations

Lecture 11: Application, Record and Field Encryption

Lecture 12: File & Disk Encryption

Lecture 13: Encryption Regulation & Crypto Standards

Lecture 14: Other Privacy enhancing Technologies

Lecture 15: Software Notifications and Agreements

Chapter 6: GDPR Implementation – short intro guide!

Lecture 1: GDPR short overview

Lecture 2: Format and Definitions

Lecture 3: Principles

Lecture 4: Lawfulness

Lecture 5: Gap Assessment

Lecture 6: How to plan your project – preparation!

Lecture 7: GDPR Roles

Lecture 8: How to Capture Personal Data in a Form

Lecture 9: GDPR Privacy Data Protection Policy

Lecture 10: Data Subject Request Procedure

Lecture 11: Data Protection Impact Assessment (DPIA)

Lecture 12: How to treat data breaches

Lecture 13: How to treat international transfers

Lecture 14: ISO 27K and GDPR mapping

Lecture 15: Privacy by Design

Chapter 7: Online Privacy Issues

Lecture 1: Organizational Privacy Strategy for Social Media

Lecture 2: Consumer Expectations

Lecture 3: Children's Online Privacy

Lecture 4: Social media – personal information collected

Lecture 5: Social media – personal information shared and ownership

Lecture 6: E-commerce personalization

Lecture 7: Online Advertising

Lecture 8: Key considerations when posting ADs on your website

Lecture 9: Understanding cookies, beacons and other tracking technologies

Lecture 10: Cookies – Deep Dive

Lecture 11: Web Browser Privacy and Security Features

Chapter 8: Technologies with Privacy Considerations

Lecture 1: Wireless Technology – RFID

Lecture 2: Wireless Technology – NFC, Bluetooth & WiFi

Lecture 3: Location Based Services (LBS) – generalities

Lecture 4: Location Based Services (LBS) – GPS

Lecture 5: Location Based Services (LBS) – GIS

Lecture 6: Surveillance of Individuals

Lecture 7: Data surveillance & Biometric recognition

Chapter 9: Direct Marketing Challenges

Lecture 1: Data Protection & Direct Marketing

Lecture 2: The concept of Direct marketing

Lecture 3: The right to opt-out

Lecture 4: Marketing Requirements under e-Privacy Directive

Lecture 5: Postal Marketing

Lecture 6: Telephone Marketing

Lecture 7: Electronic Marketing

Lecture 8: Location Based Marketing

Lecture 9: Online Behavioral Advertising (OBA) and GDPR

Chapter 10: Lawful Processing of HR Data, Contracts & Recruiting

Lecture 1: Where do privacy and HR meet?

Lecture 2: More difficult to rely on Consent