Information Governance: GDPR from Pluralsight

The EU’s General Data Protection Regulation affects the ways that organizations handle personal data. This course will give you a clear understanding of GDPR and what is needed to support organizational compliance.

The European Union's General Data Protection Regulation potentially affects any organization in the world that processes data about people in the EU. In this course, Information Governance: GDPR, you’ll discover which organizations must comply with the EU’s General Data Protection Regulation and how GDPR will affect all IT teams. First, you’ll start by meeting the key terms used in the GDPR and seeing how the regulation aims to balance the things that an organization wants to do with personal data with people’s rights, including their right to privacy. Next, you'll find out the key data protection principles and what they mean for systems, before discovering the specific rights that people have over data about them, and what IT must do to respond to those rights. Finally, you'll learn about the core things that GDPR requires an organization to do, including the way it wants you to manage the security of people’s data and what to do when the organization has a breach of data security. By the end of this course, you’ll have the core GDPR knowledge that anyone working in IT needs to understand. You’ll be aware of GDPR’s requirements when working in projects across the IT lifecycle from design and development through deployment to running systems. You’ll also be comfortable discussing GDPR with your organization’s legal, compliance and governance teams.

What's inside

Syllabus

Course Overview

Introduction to GDPR: Concepts and Principles

Data Subject Rights

Controller and Processor Responsibilities

Traffic lights

Read about what's good

what should give you pause

and possible dealbreakers

Ideal for IT teams and anyone interested in European law

Covers core principles and requirements of GDPR to support organizational compliance

Taught by industry experts with deep knowledge of GDPR

Provides a comprehensive understanding of GDPR's impact on IT systems and processes

May require additional preparation and knowledge in related fields

May require access to specific tools and resources

Reviews summary

Gdpr essentials for it professionals

According to learners, this course provides a clear foundational understanding of GDPR, making complex legal jargon easy to grasp through well-structured content and a knowledgeable instructor. It is particularly relevant and practical for IT professionals, consultants, and those in compliance roles, offering valuable insights into organizational responsibilities and data subject rights. While it excels at explaining the 'what' of GDPR, some students noted it can be too high-level for in-depth technical implementation, suggesting a desire for more practical case studies or 'how-to' guidance. Although older reviews occasionally mentioned a dry presentation or dated examples, recent feedback indicates the course content is current and highly relevant.

The course follows a logical progression, building concepts effectively.

"The structure of the Course Overview was logical, building concepts clearly."

"The module on Controller and Processor Responsibilities was particularly well-structured and directly applicable to client work."

"This course provides a solid foundation for GDPR due to its well-organized modules."

The course content is generally current and relevant to the evolving GDPR landscape.

"The content feels current and relevant, which is crucial for a topic like GDPR."

"Although some aspects felt a little dated in terms of examples used previously, recent content is timely and helpful."

"It’s an excellent primer and confidence builder for anyone new to information governance."

Highly relevant and applicable for IT, compliance, and governance professionals.

"As a senior IT consultant, I found this course incredibly valuable for solidifying my understanding of GDPR."

"The module on Controller and Processor Responsibilities was particularly well-structured and directly applicable to client work."

"It really helped me understand the 'why' behind many compliance requirements."

Provides a clear, comprehensive, and well-structured understanding of GDPR.

"This course provided an excellent foundational understanding of GDPR's impact on systems and data lifecycle."

"The instructor broke down complex legal jargon into understandable concepts, making it easy to see the practical implications."

"I appreciated the clear explanation of Data Subject Rights and how they translate into IT actions."

While informative, some learners found the delivery dry or wished for more interactivity.

"I struggled with the dry presentation... I found myself zoning out during some of the longer video modules."

"It could use more engaging delivery methods or interactive elements to break up the theoretical explanations."

"My only minor critique is that a few more real-world case studies or examples of common pitfalls would have made it even more engaging."

Focuses on regulatory concepts, less on deep technical implementation details.

"While comprehensive, I felt that some sections, especially on specific implementation strategies, could have gone into more depth."

"I was hoping for more practical guidance on how to apply these principles in a large enterprise environment, rather than just an overview of the regulations."

"It lacks the 'how-to' aspect crucial for IT professionals."

Activities

Be better prepared before your course. Deepen your understanding during and after it. Supplement your coursework and achieve mastery of the topics covered in Information Governance: GDPR with these activities:

Review Data Privacy Concepts

Show steps

Revisit the foundational concepts of data privacy to strengthen your understanding of GDPR.

Browse courses on Data Privacy

Show steps

Summarize the key principles of data privacy, such as consent, purpose limitation, and data minimization.
Identify the different types of personal data and the associated risks of handling them.
Review the legal and regulatory frameworks for data privacy, including GDPR and other relevant laws.

Explore GDPR Implementation Best Practices

Show steps

Follow expert tutorials to learn how organizations successfully implement GDPR requirements.

Show steps

Identify best practices for conducting data protection impact assessments (DPIAs).
Explore case studies of organizations that have effectively implemented GDPR compliance measures.
Learn about tools and technologies that can assist with GDPR implementation.

Contribute to Open Source GDPR Compliance Projects

Show steps

Join open source communities working on GDPR compliance tools and contribute to real-world solutions.

Show steps

Identify open source projects related to GDPR compliance.
Explore the project's documentation and identify areas where you can contribute.
Participate in discussions and submit code or documentation improvements.

Three other activities

Expand to see all activities and additional details

Show all six activities

Conduct Mock GDPR Compliance Audits

Show steps

Simulate real-world GDPR compliance audits to test your understanding and identify areas for improvement.

Show steps

Develop a checklist based on GDPR requirements.
Review sample data sets and identify potential compliance issues.
Write a report detailing your findings and recommendations for improvement.

Attend a GDPR Implementation Workshop

Show steps

Engage with experts and peers to discuss practical aspects of GDPR implementation and gain valuable insights.

Show steps

Research and identify relevant GDPR implementation workshops.
Attend the workshop and actively participate in discussions.
Network with other professionals and exchange knowledge.

Develop a GDPR Compliance Plan Template

Show steps

Create a comprehensive template to guide organizations in developing their own GDPR compliance plans.

Show steps

Gather best practices and industry benchmarks for GDPR compliance.
Draft a template that includes sections for data mapping, risk assessment, and implementation strategy.
Review and refine the template based on feedback from experts.

Career center

Learners who complete Information Governance: GDPR will develop knowledge and skills that may be useful to these careers:

Data Privacy Consultant

A Data Privacy Consultant specializes in advising organizations on data protection and privacy matters. This course can provide a comprehensive understanding of GDPR's requirements and help consultants develop effective compliance strategies for their clients.

See salaries and explore the career path for Data Privacy Consultant

Data Governance Specialist

A Data Governance Specialist establishes and maintains policies and procedures for the management of data within an organization. This course can help build a foundation for understanding the data protection principles and rights outlined in GDPR.

See salaries and explore the career path for Data Governance Specialist

Information Technology (IT) Security Manager

An IT Security Manager oversees the implementation and maintenance of an organization's information security program. This course can enhance understanding of GDPR's security requirements and assist in developing effective data protection strategies.

See salaries and explore the career path for Information Technology (IT) Security Manager

Risk and Compliance Manager

A Risk and Compliance Manager oversees an organization's risk management and compliance program. This course can provide foundational knowledge of GDPR's requirements and help in understanding the potential risks associated with data handling.

See salaries and explore the career path for Risk and Compliance Manager

Privacy Officer

A Privacy Officer oversees an organization's privacy compliance program, ensuring adherence to data protection regulations like GDPR. This course can help build a foundation for understanding GDPR's requirements and best practices for data privacy management.

See salaries and explore the career path for Privacy Officer

IT Risk Manager

An IT Risk Manager identifies, assesses, and mitigates risks to an organization's IT systems and data. This course can provide foundational knowledge of GDPR's data protection requirements and help in understanding the potential risks associated with data handling.

See salaries and explore the career path for IT Risk Manager

Information Technology (IT) Director

An IT Director manages an organization's IT department and oversees the implementation and maintenance of technology systems. This course can help an IT Director understand the data protection requirements of GDPR and effectively lead the organization's compliance efforts.

See salaries and explore the career path for Information Technology (IT) Director

Information Technology (IT) Auditor

An IT Auditor assesses an organization's IT systems and practices to ensure compliance with regulations and standards. This course can provide foundational knowledge of GDPR's requirements and help build a foundation for conducting effective privacy audits.

See salaries and explore the career path for Information Technology (IT) Auditor

Information Technology (IT) Consultant

An IT Consultant provides expert advice and guidance to organizations on IT-related matters. This course can provide an understanding of GDPR's implications for data handling and help consultants advise clients on compliance strategies.

See salaries and explore the career path for Information Technology (IT) Consultant

Data Protection Analyst

A Data Protection Analyst drafts privacy policies, assesses data processing risks, and establishes data security protocols to ensure compliance with regulations such as GDPR. This course may be useful in providing foundational knowledge of GDPR and its implications for organizations.

See salaries and explore the career path for Data Protection Analyst

Information Security Analyst

An Information Security Analyst monitors and protects an organization's information systems and data from cyber threats. This course can provide insights into GDPR's security requirements and help build a foundation for implementing effective data protection measures.

See salaries and explore the career path for Information Security Analyst

Chief Technology Officer (CTO)

A Chief Technology Officer (CTO) leads an organization's technology strategy and operations. This course can help a CTO understand the impact of GDPR on data management and technology infrastructure, enabling them to make informed decisions about compliance.

See salaries and explore the career path for Chief Technology Officer (CTO)

Information Technology (IT) Manager

An IT Manager oversees the day-to-day operations of an organization's IT department. This course can provide foundational knowledge of GDPR's impact on data management and assist in implementing data protection measures within the organization's IT systems.

See salaries and explore the career path for Information Technology (IT) Manager

Compliance Officer

A Compliance Officer ensures that an organization complies with laws, regulations, and industry standards. This course may be useful in providing foundational knowledge of GDPR's requirements and its implications for data handling practices.

See salaries and explore the career path for Compliance Officer

Legal Counsel

A Legal Counsel provides legal advice and representation to organizations on a wide range of matters. This course may be useful for Legal Counsel who need to understand GDPR's legal implications and advise clients on compliance strategies.

See salaries and explore the career path for Legal Counsel