BCS Practitioner Data Protection

** Course recently refreshed to reflect recent changes in data protection regulations**
Learn about data protection for local authorities and public authorities, AI and processing of personal data, data protection implications for employment practices code, international data transfers, more information about PECR, Freedom of Information requests, obligations of controllers.

Do you need a qualification in data protection or are you thinking about learning more about data protection for your organisation?

The BCS Practitioner Certificate in Data Protection is a level 3-4 certified course designed for those with some data protection responsibilities in an organisation and wish to achieve and demonstrate a broad understanding of the law and progresses from what is taught in the BCS Foundation Certificate in Data Protection.

You will learn the knowledge of UK data protection law, incorporating the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018 (DPA 18), as well as the EU General, Data Protection Regulation (EU GDPR), along with an understanding of how they are applied in practice.

This version of the syllabus has been updated to take into account the UK’s withdrawal

from the EU and following the EU-UK Trade and Cooperation Agreement that was signed in December 2020. It also includes the two adequacy decisions published 28 June 2021 by the EU Commission in respect of the UK regarding transfers under the EU GDPR; and to transfers under the Law Enforcement Directive (LED).

Why Choose Duco Digital Training?

• With self-study, you get a whole package of support we call PASS ASSIST, including:
• Free one year BCS Associate membership (normally costing £90)
• Free BCS Data Analyst eBook
• Practice exam papers
• Series of support videos to get the most out of your course, making a learning plan and how to prepare for the exam
• 5-star rating
• 95% pass rate.

A live training option is available, please contact us.

BCS Certification

Digital certificate - Included

The “BCS Practitioner Data Protection” is a professional certification that is a globally recognized professional qualification that will help develop your knowledge and understanding of:

1. CONTEXT OF DATA PROTECTION LEGISLATION

• Explain the concepts of data protection and privacy.
• Describe the history of data protection in the UK.
• Describe the territorial scope and jurisdiction of GDPR.
• When a representative of the controller is needed.

2. PRINCIPLES OF DATA PROTECTION AND APPLICABLE TERMINOLOGY

• Define the following key items of terminology.
• Demonstrate how the following UK GDPR principles regulate the processing of personal
  data.

3. LAWFUL BASES FOR PROCESSING PERSONAL DATA

• Illustrate the lawful bases to process personal data listed under (Article 6) of the UK
  GDPR and as displayed below.
• Describe the conditions permitted for processing special category data listed under
  Article 9 of UK GDPR.
• Explain the rules for processing criminal offence data.

4. ACCOUNTABILITY PRINCIPLE

• Identify the accountability and data governance obligation (Article 5 (2) Article 24).
• Describe the purpose of a Data Protection Impact Assessment (DPIA) and when risks
  arising from one may need prior consultation with the supervisory authority/ICO (Article
  36).
• Demonstrate the process of conducting a DPIA (Article 35)
• Explain what a record of processing activity (RoPA) is, the information it should contain
  and why this is important (Article 30).
• Outline the interplay with privacy notices (Article 13 & 14).
• Demonstrate how to adopt a ‘data protection by design and by default’ approach (Article
  25).
• Identify suitable information security measures (Article 32).
• Explain the designation, position and tasks of the Data Protection Officer (DPO) (Article
  37 to 39).
• Explain the scope of the DPO role in monitoring compliance and managing risks through
  a Privacy Management programme (Article 39 1.b).

5. OBLIGATIONS OF CONTROLLERS, JOINT CONTROLLERS AND DATA PROCESSORS

• Explain controller and processor obligations (Article 24 & 28).
• Describe the concept of joint controllers (Article 26).
• Describe the act of processing under the authority of a controller or processor (Article
  29).
• Explain what a Data Processing Agreement is and when it would be necessary in a
  controller-processor arrangement.

6. INTERNATIONAL DATA TRANSFERS UNDER EU AND UK GDPR

• Recognise the general principles for transferring personal data to third countries from
  both the UK and the EU and illustrate what issues might arise from each of the following
  mechanisms.

7. DATA SUBJECT RIGHTS

• Demonstrate a detailed knowledge of the key rights granted to individuals (Articles 12
  to 17 and 21 to 22).
• Express awareness of the following rights in addition to the above.
• Describe the restrictions and exemptions that may affect data subject rights.
• Explain the fundamental rights of information requests.

8. THE ROLE OF INDEPENDENT SUPERVISORY AUTHORITIES (ISAS) AND THE ICO

• Explain the role and importance of supervisory authorities.
• Explain the role of the Information Commissioner’s Office (ICO).

9. BREACHES, ENFORCEMENT AND LIABILITY

• Explain what constitutes a personal data breach and the information required for
  reporting.
• Explain when the obligations arise to report breaches of personal data (Articles 33 and
  34 UK GDPR).
• Explain how a data protection complaint should be handled (Article 57 (1)(f)).
• Describe the sanctions that could be imposed as a result of a personal data breach or
  data protection complaint.
• Describe the following liabilities:
  
  • Indicative content
  • Guidance
• Identify the role of tribunal and judicial courts

10. PROCESSING OF PERSONAL DATA IN RELATION TO CHILDREN

• Explain how data protection legislation applies to children.

11. SPECIFIC PROVISIONS IN DATA PROTECTION LEGISLATION OF PARTICULAR
RELEVANCE TO PUBLIC AUTHORITIES

• Define the meanings of public authority and public body and how it relates to both Data
  Protection Act 2018 and the UK GDPR (Section 7 of Data Protection Act 2018).
• Explain the provisions relating to Data Protection Officers (DPOs) for public authorities.
• Explain awareness of the existence of the exemptions for health, social work and
  education (Schedule 3, DPA 18).

12. PRIVACY AND ELECTRONIC COMMUNICATIONS (EC DIRECTIVE) REGULATIONS
(PECR) 2003 AND SUBSEQUENT AMENDMENTS TO 2021.

• Explain the relationship between PECR and the GDPR, including PECR’s:
  
  • Indicative content
  • Guidance

13. APPLICATION OF DATA PROTECTION LEGISLATION IN KEY AREAS OF INDUSTRY.

• Recognise the data protection implications of the Employment Practices Code.
• Describe how the use of video surveillance and CCTV (Data Protection Code of Practice
  for surveillance cameras and personal information) is governed by data protection law.
• Identify how the use of cookies and digital technologies is governed by data protection
  law.
• Explain how data sharing practices are governed by data protection law (ICO Data
  Sharing Code of Practice).

14. AI AND THE PROCESSING OF PERSONAL DATA

• Analyse the benefits versus the risks of AI for individuals and organisations.
• Analyse the impact of AI on the principles and concepts of data protection.
• Explain the process of completing a Data Protection Impact Assessment (DPIA) where
  AI is used.

Exam Information of “BCS Practitioner Data Protection” Course:

• It is a 40 multiple choice questions
• Pass mark is 26/40 points or 65%
• Duration of the exam is 90 minutes
• The exam will be supervised virtually

Who is BCS?

Recognised globally by corporations, academics and IT professionals, BCS is the British Computer Society, more commonly known as the Chartered Institute for IT.

They have over 60,000 members in 150 countries, and a wider community of business leaders, educators, practitioners and policy-makers all committed to their mission of leading the IT industry through its ethical challenges, to support the people who work in the industry, and to make IT good for society.

What our students say about us:

"The training provided will assist me to conduct AI research projects in a more professional and systematic way. The knowledge provided will be incredibly valuable for my future study in the field of computer vision." — Muhammad Lecturer and AI PhD Candidate

“Good training materials for remote learning, and the most impressive part was the speed at which they responded to questions.” — Tom Data Protection Practitioner

"This proved to be a very valuable course to me." — Janet Business Analyst

Meet Our Instructor

Darren Winter is Director at Duco Digital and supports organisations with cutting-edge business intelligence, sales, and marketing automation solutions alongside courses and training in artificial intelligence, business analysis, and data protection across diverse sectors spanning the UK, Europe, the Middle East, and SE Asia.

Noteworthy achievements include training academics in AI for the Indonesian government and teaching students in Technology Sales for the Saudi Arabian government. In 2023, the UK Department of Business and Trade invited him as a leaders of AI for a trade mission to Indonesia where he discussed Indonesian AI and ethical policy with key stakeholders.

He is also studying for his PhD in AI Ethics at Cordoba University, Spain, where he is exploring the impacts of the EU AI Act upon organisations.

For whom is the “BCS Practitioner Data Protection” course designed?

Whether you're an experienced professional enhancing your data protection skills or an individual starting a career in data privacy, the “BCS Practitioner Data Protection” course is designed to meet your needs. It's tailored for:

• Aspiring Data Protection Officers: Individuals keen to immerse themselves in the crucial field of data protection, ready to build a rewarding career by mastering privacy laws and compliance strategies.
• Privacy-Focused Students: University scholars aiming to augment their academic knowledge with practical, industry-relevant skills in data protection, preparing for a smooth transition into professional roles.
• Career Changers: Professionals contemplating a shift into data protection roles from various backgrounds, eager to apply their diverse experiences to safeguard personal data and ensure regulatory compliance.
• Compliance and Security Advocates: Practitioners dedicated to enhancing organizational security and compliance through effective data protection practices and risk management strategies.
• Strategic Executives and Managers: Mid-level managers, senior executives, and directors seeking to strengthen their data protection expertise, enabling them to lead compliance initiatives and protect organizational data assets effectively.

• This course is recommended for those who have previously studied our BCS Foundation in Data Protection course or have 1 - 2 years in a role with experience and responsibility for data protection. Please contact us if you are unsure about your suitability for this course.
• An internet connection with a mobile/tablet or laptop is required.

The salary range for UK jobs in data protection is £34,140 - £65,000, so now is a great time to gain a qualification.

Currently there are no Q&As for this course. Be the first to ask a question.