GDPR: The Big Picture
The EU’s General Data Protection Regulation will affect the way IT teams everywhere design, develop, deploy, and run systems. This course will give you a clear understanding of GDPR and what IT teams need to do to support organizational compliance.
What you'll learn
In this course, GDPR: The Big Picture, you’ll discover which organizations must comply with the EU’s General Data Protection Regulation and how GDPR will affect all IT teams. First, you’ll start by meeting the key terms used in the GDPR and seeing how the regulation aims to balance the things that an organization wants to do with personal data with people’s rights, including their right to privacy. Next, you'll find out the key data protection principles and what they mean for systems, before discovering the specific rights that people have over data about them, and what IT must do to respond to those rights.
After that, you'll learn about the core things that GDPR requires an organization to do, including the way it wants you to manage the security of people’s data and what to do when the organization has a breach of data security. Finally, you’ll think about the application of GDPR by discovering an organizational journey from the beginning of the process to GDPR compliance and by exploring how GDPR affects a typical application development project.
By the end of this course, you’ll have the core GDPR knowledge that anyone working in IT needs to understand. You’ll be able to take account of GDPR when working in projects across the IT lifecycle from design and development through deployment to running systems. You’ll also be comfortable discussing GDPR with your organization’s legal, compliance and governance teams.
Table of contents
- Rights in the Information Lifecycle 3m
- Rights to Be Informed About What Will Happen to a Person’s Data 4m
- Right of Data Subjects to Access Their Data (DSARs) 4m
- Rights of Correction and Erasure (Forgotten) 5m
- Right to Restrict Processing 2m
- Right to Data Portability 3m
- Marketing, Profiling, and Automated Decision Making 6m
- Summary of Subject Rights 1m
- Penalties and Planning for Rights Requests 6m
About the author
John Elliott is a specialist in regulated security and data protection. His fascination is the way that people engage with security directives: whether that’s a company following external regulation, an information security team developing policies, an IT team following them, or a colleague who is just trying to do their job securely. John has led information security and data protection functions in aviation and financial services. He’s represented both Visa Europe and Mastercard on the PCI S... more