Training on the data protection implications in the lifecycle of a customer
This is technical training on the requirements of the Data Protection Act 1998 which also explains how the legal requirements apply in practice. Using the lifecycle of a customer makes the session meaningful for participants and helps them to identify issues in practice, including those requiring investigation following the session.
The training includes a technical briefing on aspects of the Data Protection Act 1998 including the role of the Information Commissioner, notification, offences and the Data Protection Principles.
In considering the Data Protection Principles we take a risk management approach, identifying the risks of non-compliance. We also identify how the Principles impact on work activities and the sort of activities that can be undertaken to manage data protection compliance.
The training includes a workshop to identify data protection issues around the lifecycle of a customer, starting with marketing, managing contacts, agreeing and administering contracts, dealing with issues during the contract term, termination and beyond.
If required, we can include any of the following
- A briefing on the likely requirements of the proposed EU Data Protection Regulation.
- Consideration of how to implement and evidence a system of control for data protection compliance. This is likely to be a requirement under the proposed EU Data Protection Regulation likely to come into force in 2017.
- How to audit for data protection compliance.
Objectives of Customer Lifecycle Training
- To refresh knowledge of data protection law
- To highlight the impact of data protection on routine work activities and discuss how to address them
- To identify the privacy implications in current work activities and prioritise compliance work
- To signpost further guidance on data protection
Who should attend?
This training is useful for managers who carry out compliance checks on operational activities as part of their managerial role. It is also a way to provide support for managers to conduct an in-house audit of data processing in their department.
The course can be conducted with special emphasis on HR, identifying the data protection issues that arise during the lifecycle of an employee from recruitment through administration of pay and benefits to leaving service. In many businesses HR processes the most personal data and so presents the highest data protection compliance risk area.