What Is GDPR (General Data Protection Regulation)?

Training: Organizations can lower their risk of regulatory action through GDPR compliance training programs. Distance Learning Connection offers online and in-person training programs that provide certification credentials to indicate an understanding of the guidelines and regulations specified by the act. Our New York GDPR certification training allows you to gain the knowledge and skills needed to implement an effective compliance program under the General Data Protection Regulation (GDPR). Whether you complete the New York GDPR certification online, or enroll in our in-house GDPR training program in the USA, you will be equipped with the skills needed to achieve effective compliance. Click here to review the GDPR Course Topics

What is GDPR – GDPR provides a set of standardized data protection laws for citizens of member countries. The GDPR allows EU citizens to understand how their data is being collected, used and stored. It allows EU citizens to minimize collection of Personal Data to a specific stated purpose, delete Personal Data that is no longer necessary, correct Personal Data that is inaccurate, restrict access to persona data, and secure Personal Data throughout its entire lifecycle.

Who must comply with GDPR – EU based companies whether the processing of Personal Data takes place in the EU or not. Non-EU based companies where the processing of Personal Data relates either to: (1) the offering of goods/services to the Data Subjects in the EU or (2) to the monitoring of the behavior of Data Subjects’ behavior taking place in the EU.

What Data Must Be Protected?

Personal Data – Any information relating to an identifier of a Data Subject such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Sensitive Data – Data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade-union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation. Processing of Sensitive data shall be prohibited unless it falls into an exception.

What does Compliance Look Like?

Controllers and processors of data shall be responsible for, and be able to demonstrate compliance with, processing of Personal Data while respecting the Rights of Data Subjects.

Communication of a Personal Data breach to the Data Subject When the Personal Data breach is likely to result in a high risk to the rights and freedoms of natural persons, the Data Controller shall communicate the Personal Data breach to the Data Subject without undue delay.
The communication to the Data Subject shall be performed in clear and plain language.

The General Data Protection Regulation (GDPR) brings substantial changes to the rules concerning personal data and its use. Your organization must have managers in place who understand the GDPR’s requirements in order to ensure effective compliance. These managers must be well equipped to plan, implement, and maintain a compliance program. In other instances, your organization may be required to appoint a trained and qualified data protection officer (DPO). To know more about our New York GDPR training requirements as well as our GDPR certification online, call Distance Learning Connection for a Consultation.