GDPR Onlines

Short, punchy courses delivered at your desk (or in your home wearing pyjamas, I won’t know the difference) – one or two hours, full materials available, and everything you would expect from a 2040 course. Listen and learn, ask questions and get answers.


One hour courses are £50 + VAT.
Two hour courses are £80 + VAT
Packaged courses (2 x 2 hrs) are £140 + VAT
Courses start at 9.30am or 10am: check start time when you book! 
2 hour courses include a 10 minute break


Your booking is for one person, and you agree when you book that only one person will view the course. Discounts are available if you want more people to attend; contact for more information.
You can cancel your attendance up to one week before the course; after that, no refunds are available. You will get access to a recorded version of the course if you cannot attend on the day.

To book, click on the link by your chosen course:

DPIAs and DP by Design: the basics (2 hrs)

Contact me for access to a recorded version
This practice, no-nonsense two hour course covers the basics of introducing a Data Protection by Design approach, including techniques to make GDPR compliance easier and more routine and steps to building a practical and effective DP culture. In particular, how do you use Data Protection impact assessments to get to grips with the GDPR / DPA requirements? What is a DPIA? When is a DPIA mandatory? Who should carry them out? All these questions and more will be answered on this practical and plain English online course.
This course works in conjunction with DPIAs in practice, which is running on June 4th 2020. A discount is available if you book both.

DPIAs in Practice (2 hrs)

June 4th 2020
This is a practical two-hour session which deals with carrying out a DPIA on a specific project. We look at each stage of the process: When should you get started? How do you address the GDPR principles? How do you identify risks and what methodologies can you follow to assess them properly? When should you change the project, and when can you accept that some risks are essential to the business? What is prior consultation? Including examples of templates and processes that work well (and also some approaches that will sink you), this practical and entertaining course will set you up to get more out of the DPIA than just a tick in a box.
This course works in conjunction with DPIAs and DP by Design: the basics, which is running on May 28th 2020. A discount is available if you book both.

DPO Essentials (2 hrs)

June 18th 2020
Who should be a Data Protection Officer? What skills and knowledge are required? When you’re doing the job, what do you need to tackle? What do you need to know about your organisation? What are the best techniques to help your colleagues to achieve a balance between data protection compliance and effective working? All these questions are more will be answered on this practical and entertaining course.

GDPR and HR (1 hr)

June 22nd 2020
Recruitment, references, grievances, monitoring, marketing to staff; GRecruitment, references, grievances, monitoring, marketing to staff: GDPR has implications for all these and more. In the current crisis, we also have the complications of working from home, health testing and monitoring. This practical update will highlight the tricky issues and how to deal with them.

Data Sharing Masterclass (2 hrs)

June 23rd 2020
Data sharing is often perceived to be the most complex and difficult of DP issues, but the legislation doesn’t see disclosure as being any different to other forms of processing. There are pitfalls, especially if the data will be re-purposed or where you might need to disclose confidential or sensitive data. This a practical, plain English guide to ensuring that disclosures are lawful and justified – as well as details of how the DPA exemptions apply and what the rules are for special categories data, the course also covers data sharing agreements, data processors and disclosures across International boundaries.

CCTV Essentials (2 hrs)

25th June 2020
When can we use CCTV? Can we use it in secret? What do you need to consider when using CCTV? Who can you share images with? What happens if someone makes a subject access request for CCTV data? All of these questions and more will be answered in this entertaining and practical course.

Subject Access Basics (1hr)

29th June 2020
Dealing with a subject access request is a tricky business and this no-nonsense course will teach you what you need to do when a SAR arrives. Checking ID, dealing with requests made via solicitors and other third parties and deciding whether the request is complex will all be dealt with, as well as the thorny issues of when a request might be unfounded or vexatious. GDPR SARs are not the same as subject access used to be, and this course will teach you how to negotiate the challenges.

GDPR Essentials (2 hr)

30th June 2020
GDPR is two years old, and an awful lot of nonsense has been written and said about how it works. Listen to the wrong person, and you’ll be convinced that you’re going to be inundated with access requests, fined 4% of your turnover and forced to get consent for everything. This course will set you right. You can’t learn everything in two hours, but this practical, entertaining course will get you started. What are the basic requirements of GDPR? What rights do people have over their data? When do you need consent? What breaches do you need to report to the ICO? Ideal for small organisations, but also with some surprises for the biggest – book now for the perfect crash course in all things GDPR.