TRAINING
Privacy
Privacy training, including:
Changemanagement
Change training, including:
Riskmanagement
Risk Management training:
These training courses can also be provided “in-house,” or as part of a broader training program.
For information on the content of these training courses, select the relevant training course(s).
PR1 – Setting up a Privacy organization and Privacy governance
Privacy training
Who is this training for
You are a Data Protection Officer (FG) or Chief Privacy Officer (CPO) responsible for setting up and managing a privacy organization. You want to take a structured approach to get in control and set the right priorities.
What will I learn
After this training you will have tools to determine where your organization stands, how to determine and arrive at an objective, in order to create a plan to realize that objective.
Duration
This training will take one day.
Here’s what we’ll do
During this training we will discuss the following topics:
- the baseline measurement;
- the positioning;
- the environment/organization;
- the roles within the privacy governance;
- centralized or decentralized roles;
- setting the objectives;
- the prioritization;
- creating a roadmap;
- monitoring (changes in) legislation and regulations;
- securing the implemented measures.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
PR2 – Create and manage a processing register
Privacy training
Who is this training for
You are responsible for establishing and maintaining a processing register. You want to comply with legal requirements, but also You want to take a structured approach to get in control and prioritise appropriately.
What will I learn
After this training, you will be able to make a conscious choice on how to set up the processing register and the tooling in which to set up the register. You will also be able to set up an adequate process for entering and updating processing operations and for periodic monitoring of the register and the processing operations it contains.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- requirements for the register;
- the added value of a register;
- the use and choice of tooling;
- publication of the register;
- the process for entering or modifying processing operations;
- the periodic revision of the register and the processing operations;
- the relationship with application lists, data processor agreements, DPIAs and DTIAs.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
PR3 – Perform DPIAs and LIAs
Privacy training
Who is this training for
You own processing operations and are therefore responsible for their AVG/GDPR compliancy, or you assist and advise as (Chief) Privacy officer in conducting DPIAs and LIAs.
What will I learn
After this training, you will be able to identify when a DPIA or an LIA is required and be able to carry it out.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- what is a DPIA;
- the topics in a DPIA;
- approach to assessing risks;
- what it takes to conduct a proper DPIA;
- the process to prepare a DPIA;
- the scope of a DPIA;
- the form of a DPIA;
- use of privacy tooling;
- the relationship with the LIA and how to conduct it;
- decision-making and follow-up on actions.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
PR4 – Processors and the Data Processor Agreement (DPA)
Privacy training
Who is this training for
You are the owner of processing operations and therefore responsible for their AVG/GDPR compliancy, or you are involved as (Chief) Privacy officer, corporate counsel or procurement officer in establishing processor agreements.
What will I learn
After this training, you will be able to determine when a processor agreement is needed. You will know which version to use in which situation and oversee the relationship with the DPIA, DTIA and Information Security Risk Assessment (ISRA).
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- concepts of processor and controller;
- the structure of the processor agreement;
- variants of the processor agreement;
- the relationship with the DTIA, ISRA and LIA;
- the use of sub-processors;
- the process of drafting and agreeing a processor agreement.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
PR5 – Transfer of personal data to third countries and performing DTIAs
Privacy training
Who is this training for
You are involved in the compliant transfer of personal data to third countries as a Data Protection Officer (FG), Chief Privacy Officer (CPO) or project manager.
What will I learn
After this training, you will know the requirements for the compliant transfer of personal data to third countries and be able to implement a process for conducting transfer assessments at your organisation.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- the legal/historical perspective;
- the safeguards for appropriate transfer;
- when there is a transfer (to third countries);
- what/ who is the data exporter;
- sub-processors;
- the transfer assessment;
- the approach to a transfer assessment;
- the importer-dependent approach;
- decision-making and risk acceptance;
- the focal points.
________________________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
CM1 – Drafting a project or program plan
Changemanagement training
Who is this training for
You are responsible for change as a project manager or as a client and are looking for guidance on how to draw up or test a change plan.
What will I learn
As a project manager, you are able to draw up an adequate change plan. As the client, you are able to give the right input to the plan, and to ‘chalenge’ it properly, so that this enables both you and the change manager to steer properly.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- the preparation prior to the plan;
- the objective;
- a project versus a programme;
- the influence of organisational culture;
- the different roles;
- the governance;
- the components of the plan;
- waterfall and agile change organisations;
- business case and benefit mapping;
- pragmatism in drafting the plan;
- interim evaluations and adjustments.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
CM2 – Change in an environment with both MSP/Prince2 and scrum/agile change teams
Changemanagement training
Who is this training for
You are an operational line manager and want to get a better grip on the changes you have a role in.
What will I learn
After this training, you will be familiar with different change structures and their roles. You will be able to fill the role you have.
You will be able to properly delegate the changes you are responsible for to a change team or project.
.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- project vs. programme;
- waterfall versus agile scrum;
- explanation waterfall;
- explanation scrum;
- simple agile change with one team to SAFe;
- business case and benefit mapping.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
CM3 – Stakeholder management in a project or program
Changemanagement training
Who is this training for
As a change manager, you are responsible for a project or programme and want to effectively shape stakeholder management in it.
What will I learn
After this training, you will be able to identify your stakeholders and their interests in a structured way.
Based on this, you will be able to effectively involve these stakeholders in or with your project.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- identifying stakeholders and their importance;
- importance from the perspective of the project;
- from importance to method of involvement (a practical method);
- formal roles/ project governance;
- the communication plan.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
RM1 – Risk and issue management in a project or program
Riskmanagement training
Who is this training for
You are a project or programme manager looking for guidance on how to manage project risks and issues.
What will I learn
After this training, you will be able to effectively manage the risks and issues for your project.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- risks and issues;
- gross and net risk;
- the types of mitigating measures;
- the risk appetite;
- the types of risk;
- the roles within risk management;
- a practical elaboration.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
RM2 – Application of risk-based prioritization methods and risk appetite policy
Riskmanagement training
Who is this training for
As a line manager, you are responsible for a process, department or business unit and are looking for methods to prioritise activities based on risk.
What will I learn
After this training, you will have knowledge and tools that will enable you to solve prioritisation issues, based on risk-based consideration.
Duration
This training takes one half-day session.
Here’s what we’ll do
During this training we will discuss the following topics:
- the roles within risk management;
- risk appetite;
- in control and compliant;
- risk taxonomy;
- risk/impact;
- the simple risk-based prioritisation;
- WSJF;
- sequencing based on dependencies.
__________________________________
After discussing a topic, there is an opportunity to ask questions about the theory covered or about related practical situations.
About the training courses
How are the training courses provided
It is possible to purchase the training courses separately, or to combine several training courses into a broader training programme. It is also possible to combine the training courses with an advice/guidance assignment. This enables you to apply the knowledge you have acquired effectively in your organisation.
Training sessions can also be provided as part of a conference or external training programme, possibly in a shortened or adapted format.
We may use other professionals associated with Privacy & Change in these training sessions.
Where are the training courses provided
We use training locations in Utrecht and Zutphen.
Do you prefer a tailor-made training course for your organisation? In that case, the training can be provided at your company location, or at an external training location to be determined in consultation.
It is also possible to take the training course or workshop as part of a conference and have it helt at the conference location.
What are the costs of the training courses
Your investment for the training courses is € 399,- excluding VAT per half-day session per participant.
If you register several participants, purchase multiple training courses or if the training courses are combined with other services, a separate quotation will be drawn up.