Course description
Data Protection - BCS Practitioner Certificate
** Course recently refreshed to reflect recent changes in data protection regulations**
Learn about data protection for local authorities and public authorities, AI and processing of personal data, data protection implications for employment practices code, international data transfers, more information about PECR, Freedom of Information requests, and obligations of controllers.
Do you need a qualification in data protection or are you thinking about learning more about data protection for your organization?
The BCS Practitioner Certificate in Data Protection is a level 3-4 certified course designed for those with some data protection responsibilities in an organisation and wish to achieve and demonstrate a broad understanding of the law and progresses from what is taught in the BCS Foundation Certificate in Data Protection.
You will learn the knowledge of UK data protection law, incorporating the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018 (DPA 18), as well as the EU General, Data Protection Regulation (EU GDPR), along with an understanding of how they are applied in practice.
This version of the syllabus has been updated to take into account the UK’s withdrawal from the EU and following the EU-UK Trade and Cooperation Agreement that was signed in December 2020. It also includes the two adequacy decisions published 28 June 2021 by the EU Commission in respect of the UK regarding transfers under the EU GDPR; and to transfers under the Law Enforcement Directive (LED).
Who is BCS?
Recognised globally by corporations, academics and IT professionals, BCS is the British Computer Society, more commonly known as the Chartered Institute for IT.
They have over 60,000 members in 150 countries, and a wider community of business leaders, educators, practitioners and policy-makers all committed to their mission of leading the IT industry through its ethical challenges, to support the people who work in the industry, and to make IT good for society.
Why Choose Duco Digital Training?
With self-study, you get a whole package of support we call PASS ASSIST, including:
- Digital access to the BCS books in Business Analysis
- 2 live video support calls with your course trainer
- Practice exam papers
- Series of support videos to get the most out of your course, making a learning plan and how to prepare for the exam
- 5-star rating
- 95% pass rate.
A live training option is available, please contact us.
What our students say about us:
"The training provided will assist me to conduct AI research projects in a more professional and systematic way. The knowledge provided will be incredibly valuable for my future study in the field of computer vision."— Muhammad Lecturer and AI PhD Candidate
“Good training materials for remote learning, and the most impressive part was the speed at which they responded to questions.”— Tom Data Protection Practitioner
"This proved to be a very valuable course to me."— Janet Business Analyst
Meet Our Instructor
Darren Winter is Director at Duco Digital and supports organisations with cutting-edge business intelligence, sales, and marketing automation solutions alongside courses and training in artificial intelligence, business analysis, and data protection across diverse sectors spanning the UK, Europe, the Middle East, and SE Asia.
Noteworthy achievements include training academics in AI for the Indonesian government and teaching students in Technology Sales for the Saudi Arabian government. In 2023, the UK Department of Business and Trade invited him as a leaders of AI for a trade mission to Indonesia where he discussed Indonesian AI and ethical policy with key stakeholders.
He is also studying for his PhD in AI Ethics at Cordoba University, Spain, where he is exploring the impacts of the EU AI Act upon organisations.
Upcoming start dates
Suitability - Who should attend?
For whom is the “BCS Practitioner Data Protection” course designed?
Whether you're an experienced professional enhancing your data protection skills or an individual starting a career in data privacy, the “BCS Practitioner Data Protection” course is designed to meet your needs. It's tailored for:
- Aspiring Data Protection Officers:Individuals keen to immerse themselves in the crucial field of data protection, ready to build a rewarding career by mastering privacy laws and compliance strategies.
- Privacy-Focused Students:University scholars aiming to augment their academic knowledge with practical, industry-relevant skills in data protection, preparing for a smooth transition into professional roles.
- Career Changers:Professionals contemplating a shift into data protection roles from various backgrounds, eager to apply their diverse experiences to safeguard personal data and ensure regulatory compliance.
- Compliance and Security Advocates:Practitioners dedicated to enhancing organizational security and compliance through effective data protection practices and risk management strategies.
- Strategic Executives and Managers:Mid-level managers, senior executives, and directors seeking to strengthen their data protection expertise, enabling them to lead compliance initiatives and protect organizational data assets effectively.
Entry Requirements
- This course is recommended for those who have previously studied our BCS Foundation in Data Protection course or have 1 - 2 years in a role with experience and responsibility for data protection. Please contact us if you are unsure about your suitability for this course.
- An internet connection with a mobile/tablet or laptop is required.
Outcome / Qualification etc.
As well as gaining new skills and knowledge, upon successful completion, you will receive a globally recognised Professional Certificate awarded by the BCS at SFIA Plus Level 3, with free annual Membership to the BCS to help further develop your career and grow your professional network.
What Will I Learn?
An understanding of the key changes and the associated implications that the GDPR and the UK Data Protection Act 2018 introduce to data protection. As well as, individual and organisational responsibilities under the GDPR and the UK Data Protection Act, particularly the need for effective record keeping. Be able to apply the new rights available to data subjects and understand the implications of those rights. An understanding of the designation, position and role/tasks of a data protection officer and how to prepare organisations to manage and handle personal data in compliance with the GDPR and the UK Data Protection Act.
Training Course Content
The “BCS Practitioner Data Protection” is a professional certification that is a globally recognized professional qualification that will help develop your knowledge and understanding of:
1. CONTEXT OF DATA PROTECTION LEGISLATION
- Explain the concepts of data protection and privacy.
- Describe the history of data protection in the UK.
- Describe the territorial scope and jurisdiction of GDPR.
- When a representative of the controller is needed.
2. PRINCIPLES OF DATA PROTECTION AND APPLICABLE TERMINOLOGY
- Define the following key items of terminology.
- Demonstrate how the following UK GDPR principles regulate the processing of personal data.
3. LAWFUL BASES FOR PROCESSING PERSONAL DATA
- Illustrate the lawful bases to process personal data listed under (Article 6) of the UK
GDPR and as displayed below. - Describe the conditions permitted for processing special category data listed under
Article 9 of UK GDPR. - Explain the rules for processing criminal offence data.
4. ACCOUNTABILITY PRINCIPLE
- Identify the accountability and data governance obligation (Article 5 (2) Article 24).
- Describe the purpose of a Data Protection Impact Assessment (DPIA) and when risks arising from one may need prior consultation with the supervisory authority/ICO (Article 36).
- Demonstrate the process of conducting a DPIA (Article 35)
- Explain what a record of processing activity (RoPA) is, the information it should contain and why this is important (Article 30).
- Outline the interplay with privacy notices (Article 13 & 14).
- Demonstrate how to adopt a ‘data protection by design and by default’ approach (Article 25).
- Identify suitable information security measures (Article 32).
- Explain the designation, position and tasks of the Data Protection Officer (DPO) (Article 37 to 39).
- Explain the scope of the DPO role in monitoring compliance and managing risks through a Privacy Management programme (Article 39 1.b).
5. OBLIGATIONS OF CONTROLLERS, JOINT CONTROLLERS AND DATA PROCESSORS
- Explain controller and processor obligations (Article 24 & 28).
- Describe the concept of joint controllers (Article 26).
- Describe the act of processing under the authority of a controller or processor (Article 29).
- Explain what a Data Processing Agreement is and when it would be necessary in a
controller-processor arrangement.
6. INTERNATIONAL DATA TRANSFERS UNDER EU AND UK GDPR
- Recognise the general principles for transferring personal data to third countries from both the UK and the EU and illustrate what issues might arise from each of the following mechanisms.
7. DATA SUBJECT RIGHTS
- Demonstrate a detailed knowledge of the key rights granted to individuals (Articles 12 to 17 and 21 to 22).
- Express awareness of the following rights in addition to the above.
- Describe the restrictions and exemptions that may affect data subject rights.
- Explain the fundamental rights of information requests.
8. THE ROLE OF INDEPENDENT SUPERVISORY AUTHORITIES (ISAS) AND THE ICO
- Explain the role and importance of supervisory authorities.
- Explain the role of the Information Commissioner’s Office (ICO).
9. BREACHES, ENFORCEMENT AND LIABILITY
- Explain what constitutes a personal data breach and the information required for
reporting. - Explain when the obligations arise to report breaches of personal data (Articles 33 and 34 UK GDPR).
- Explain how a data protection complaint should be handled (Article 57 (1)(f)).
- Describe the sanctions that could be imposed as a result of a personal data breach or data protection complaint.
- Describe the following liabilities:
- Indicative content
- Guidance
- Identify the role of tribunal and judicial courts
10. PROCESSING OF PERSONAL DATA IN RELATION TO CHILDREN
- Explain how data protection legislation applies to children.
11. SPECIFIC PROVISIONS IN DATA PROTECTION LEGISLATION OF PARTICULAR
RELEVANCE TO PUBLIC AUTHORITIES
- Define the meanings of public authority and public body and how it relates to both Data Protection Act 2018 and the UK GDPR (Section 7 of Data Protection Act 2018).
- Explain the provisions relating to Data Protection Officers (DPOs) for public authorities.
- Explain awareness of the existence of the exemptions for health, social work and
education (Schedule 3, DPA 18).
12. PRIVACY AND ELECTRONIC COMMUNICATIONS (EC DIRECTIVE) REGULATIONS (PECR) 2003 AND SUBSEQUENT AMENDMENTS TO 2021.
- Explain the relationship between PECR and the GDPR, including PECR’s:
- Indicative content
- Guidance
13. APPLICATION OF DATA PROTECTION LEGISLATION IN KEY AREAS OF INDUSTRY.
- Recognise the data protection implications of the Employment Practices Code.
- Describe how the use of video surveillance and CCTV (Data Protection Code of Practice for surveillance cameras and personal information) is governed by data protection law.
- Identify how the use of cookies and digital technologies is governed by data protection law.
- Explain how data sharing practices are governed by data protection law (ICO Data
Sharing Code of Practice).
14. AI AND THE PROCESSING OF PERSONAL DATA
- Analyse the benefits versus the risks of AI for individuals and organisations.
- Analyse the impact of AI on the principles and concepts of data protection.
- Explain the process of completing a Data Protection Impact Assessment (DPIA) where AI is used.
Course delivery details
Exam Information of “BCS Practitioner Data Protection” Course:
- It is a 40 multiple choice questions
- Pass mark is 26/40 points or 65%
- Duration of the exam is 90 minutes
- The exam will be supervised virtually
Why choose Duco Digital Training
BCS Accredited Organisation
Buy Now, Study Today
Includes Exam Costs and Tutor Support
Request info
Duco Digital Training
Duco Digital Training is a well-respected global training provider partner. Accredited by BCS and AIM Awards, they deliver online accredited courses, boot camps and training for people, large organisations and Governments in an exciting range of business and technology subjects,...