EN CS SK IT
Added to cart
Go to cart

GDPR Auditor

Gain the knowledge needed to plan and execute audits

Requirements:
  • GDPR DPO certificate

terms +420 222 553 101

Who is the course for

More information Porovnat s ostatními kurzy

From the point of view of personal data protection, a new institution is being introduced into the legal system, namely the issuance of a personal data protection certificate (certificate) (Article 42 of the regulation, paragraph 1).

This is the most transparent way in which the Administrator and Processor can guarantee guarantees of an adequate level of personal data protection.

The certificate (certificate of compliance) will be obtained by the organization processing personal data, based on a positive audit report from the GDPR Auditor.

This course is intended for professionals in the field of personal data protection who want to acquire the knowledge and qualifications to perform certification audits. It is on the basis of a positive audit report that the conformity assessment body can decide to issue a GDPR certificate for products (SW and HW) or services.

Target audience:

  • Advocates, lawyers, forensic experts

  • Specialists in the field of personal data protection

  • Safety auditors (e.g. according to ISMS ISO/IEC 27001)

In addition to the mentioned roles, it is also intended for "third-party", i.e. experts who want to provide highly professional audit services according to international standards under the auspices of an accredited entity, in order to issue a GDPR Compliance certificate.

What will you learn

More information
  • Prepare organizational, process and technical changes
  • Receive valuable advice on reviewing contracts and internal processes
  • Prepare for the inspection by the supervisory authority
  • Strengthen your position on the market, you will be able to defend yourself against false accusations and unfair competition

Terms

Currency
Term
Place
Length
Language
Price without VAT

No results match the specified filters

Loading...

Do you want this course individually?

Let us know!

This course can be customized - either as an individual training 1:1 or for your team. Just leave us your contact and we will contact you with options tailored to your needs.

Successfully sent

We will contact you.

Load more

Timeline

1st Day

09:00 – 10:30 GDPR from the Auditor's perspective
  • Fundamental rights and freedom
  • Principles of lawful processing
  • Overview of the basic principles
  • GDPR Audit Framework - Introduction
10:30 – 10:45 Coffee break
10:45 – 12:15 Accreditation GDPR I.
  • GDPR compliance
  • ISMS ISO/IEC 27001
  • Audit principles, preparation
12:15 – 13:15 Lunch break
13:15 – 14:45 Accreditation GDPR II.
  • Instructions for starting the audit
  • Review of documentation
  • Audit activity at the client's site
  • Audit conclusion, report, final report
14:45 – 15:00 Coffee break
15:00 – 17:00 Requirements of the certification body
  • Audit process
  • Purpose and benefits of the audit
  • Structure and requirements
  • Audit as a compliance tool
The role of the auditor
  • Code of Ethics
  • Audit Management Methodology
  • Critical Auditor Skills
  • Communication with the client during the audit
  • Developing and managing the audit programme

2nd Day

09:00 – 10:30 Types of auditsCategorisation WP29
  • SW, HW
  • Organisational measures
  • Protection management at the controller, processor
Preparation of simulated audits
  • Division into work teams
  • Assignment of team topics for the audit
  • Types and focus of the scope of the simulated audit
  • Special rules for conducting a simulated audit
10:30 – 10:45 Coffee break
10:45 – 12:15 Preparation of audit documentationTeamwork
  • Preparation of the Audit Plan
  • Assignment of audit roles
  • Working with company documentation
  • Preparation of audit working papers
  • Discussion - summary of key findings and lessons learned
12:15 – 13:15 Lunch break
13:15 – 14:00 Practice audit
  • Simulation
  • Working in teams
14:00 – 14:45 Revision of GDPR Lead Auditor I.
  • Simulated audit under the supervision of an experienced Lead Auditor
  • Completion of defined assignment recording of simulated audit on video camera
14:45 – 15:00 Coffee break
15:00 – 17:00 Revision of GDPR Lead Auditor II.
  • Simulated audit under the supervision of an experienced Lead Auditor
  • Completion of defined assignment recording of simulated audit on video camera

3rd Day

09:00 – 10:30 Audit analysis
  • Summary of the previous day's findings
  • Analysis of records from simulated audits of individual teams
  • Feedback from an experienced Lead Auditor
  • Discussion of lessons learned
10:30 – 10:45 Coffee break
10:45 – 12:15 Completion of the auditPreparation of Final Reports from simulated audits - teamwork. Presentation and defence of Final Reports from simulated auditsAnalysis of the conclusions
  • From the output reports
  • Confrontations from the audit
  • Discussion of findings and experiences
12:15 – 13:15 Lunch break
13:15 – 14:45 Rules for Auditors
  • Summary of lessons learned
  • Certification rules
  • Compliance with the principles of good auditing
  • How to evaluate and assess auditors
14:45 – 15:00 Coffee break
15:00 – 17:00 Final exam
  • GDPR Auditor Certification Test
  • Block length 90
  • Teaching hours 24
  • Refreshments Yes
  • Exam Yes

The GDPR Auditor course will teach you all the necessary principles, procedures and processes needed for the actual implementation of the audit.

Based on practical exercises, you will learn auditing techniques and be prepared to manage the audit programme and prepare the final report that is the basis for the issuance of the certificate.

The certification exam takes place on the last day of the course. Candidates attending the course as a virtual class will also take the certification exam online.

Prestigious certification included

GDPR Auditor

Authorized according to the European e-Competence Framework. Accredited content according to the e-Competence Framework (e-CF) is a guarantee of appropriate expertise especially for the roles listed below.

Issuance of the certificate is in accordance with ISO/IEC 17024 General requirements for bodies operating certification of persons and The General Data Protection Regulation (GDPR Regulation EU 2016/679), or Personal data protection officer, according to Article 37 of the Regulation of the European Parliament and of the Council, including relevant other legal regulations and e-CF.

Certification instructions

Exam format

No. of questions: 75

Time limit: 90 min

Exam language: Czech

Pass mark: 45 marks (60 %)

Frequently asked questions

All questions

What is GDPR?

The General Data Protection Regulation represents a revolution in personal data protection. The new EU General Data Protection Regulation (GDPR) changes the rules of personal data processing and introduces huge penalties. Up to 4% of worldwide turnover, or €20,000,000

Regulation GDPR 679/2016 is valid in the territory of the Union with higher legal force at the level of an international treaty. In the event of a conflict with No. 101/2000 Coll., the GDPR then has a higher legal force and therefore the GDPR will apply. The GDPR itself does not repeal the law, but in a certain sense it supercharges and supplements it where they are in conflict.

Download the app,
before you come to the course

Contains consolidated terms and definitions of thousands of managerial terms in the field of project, program, portfolio, risk, enterprise architecture, security and personal data protection.

Mobile app
phone
iOS qr ios
Android qr android
footer.consulting_heading
Certification institution with deep knowledge

We are a leading certification company with more than a decade of experience in the Czech Republic.
Our expertise covers a range of industries from IT through public administration to healthcare.

Main menu
TAYLLORCOX
Courses
Certifications
Social networks

Swirl logoTM je ochranná známka společnosti AXELOS Limited. ITIL® je registrovanou ochrannou známkou AXELOS Limited. PRINCE2® je registrovanou ochrannou známkou AXELOS Limited. MSP® je registrovanou ochrannou známkou AXELOS Limited. M_o_R® je registrovanou ochrannou známkou AXELOS Limited. RESILIA™ je registrovanou ochrannou známkou AXELOS Limited & TAYLLORCOX is Licensed Affiliate Partner of IT Preneurs. AXELOS® is a registered trade mark of AXELOS Limited. Copyright© AXELOS Limited 2009. Copyright© AXELOS Limited 2017.