EXIN Privacy & Data Protection Essentials has been created specifically to test candidates on their basic understanding of data protection in the context of the General Data Protection Regulation (GDPR), including the definitions, the requirements to process data and the rights of data subjects. The exam also covers how to organize data protection and the practice of data protection.

Overview

EXIN Privacy & Data Protection Essentials (PDPE) is a certification that validates a professional’s knowledge about organizing the protection of personal data, the EU rules and regulations regarding data protection.

Wherever personal data is collected, stored, used, and finally deleted or destroyed, privacy concerns arise. With the EU General Data Protection Regulation (GDPR) the Council of the European Union aims to strengthen and unify data protection for all individuals within the European Union (EU). This regulation affects every organization that processes personal data of EU citizens. The EXIN Privacy & Data Protection Essentials certification covers the main subjects related to the GDPR, which should be known by everyone working with personal data.

The new standard in the ISO/IEC 27000 series: ISO/IEC 27701:2019 Security Techniques – Extension to ISO/IEC 27001 and ISO/IEC 27002 for Privacy Information Management – Requirements and Guidelines is useful for organizations that want to show compliance with the GDPR. The content of the new ISO standard helps fulfill the GDPR obligations to organizations regarding the processing of personal data.

Neither the GDPR nor the ISO standard are exam literature. However, the literature matrix in Chapter 4 is designed to show the link between the exam requirements, the literature, the GDPR and the ISO/IEC 27701:2019 standard to give the certification a broader context.

Skills Covered

  • Privacy and data protection fundamentals & regulation
  • Organizing data protection
  • Practice of data protection

Prerequisites

No prerequisites required

Target Audience

Everyone who wants or needs to have a basic understanding of data protection and European legal requirements as defined in the GDPR. The Essentials exam is tailored for everyone who needs to make informed decisions regarding the processing of or protection of personal data.

Course Curriculum

Module 1: Privacy & Data Protection Fundamentals and Regulations
1.1 Definitions

  • Define privacy.
  • Relate privacy to personal data and data protection.

1.2 Personal Data

  • Personal data according to the GDPR.
  • The data subject’s rights regarding personal data.
  • List the roles, responsibilities and stakeholders in the GDPR.

1.3 Legitimate Grounds and Purpose Limitation

  • Six legitimate grounds for processing.
  • The concept of purpose limitation.
  • Proportionality and subsidiarity.

1.4 Further Requirements for Legitimate Processing of Personal Data

  • The requirements for legitimate data processing.
  • The purpose of personal data processing.

1.5 Rights of Data Subjects

  • The right to be forgotten.

1.6 Personal Data Breach and Related Procedures

  • The concept of personal data breach.

Module 2: Organizing Data Protection
2.1 Importance of Data Protection for the Organization

  • What activities are required to comply with the GDPR.
  • Data protection by design and by default.
  • Personal data breach notification obligation as laid down in the GDPR.

2.2 Supervisory Authority

  • The general responsibilities of a supervisory authority.

2.3 Binding Corporate Rules and Data Protection in Contracts

  • The concept of binding corporate rules (BCR).
  • Data protection is formalized in contracts between the controller and the processor.

Module 3: Practice of Data Protection
3.1 Data Protection by Design and by Default

  • The benefits of data protection by design and by default.

3.2 Data Protection Impact Assessment (DPIA)

  • Outline what a DPIA covers and when to do a DPIA.

3.3 Personal Data in Use

  • The purpose of data lifecycle management (DLM).
  • What a cookie is and what its purpose is.
  • The right to object to the processing of personal data for the purpose
    of direct marketing, including profiling.

Dates & Locations

Let’s make it work for you

Can’t find a date that fits? Need to train your whole team? Looking for a discount?
Speak to one of our learning experts today.

x Clear all selections
Trainocate exam and cert

Exam & Certification

EXIN Privacy & Data Protection Essentials

EXIN Privacy & Data Protection Essentials (PDPE) is a certification that validates a professional’s knowledge about organizing the protection of personal data, the EU rules and regulations regarding data protection.

Training & Certification Guide

  • Duration: 30 minutes
  • Number of Questions: 20 (Multiple Choice)
  • Pass mark: 65%
  • Open book: No
  • Electronic equipment allowed: No
  • Level: Foundation
  • ECTS Credits: 1
  • Languages: Dutch, English, Hebrew

Frequently Asked Questions

Speak to a Training Consultant

All courses are HRD Claimable.
Get in touch with our team via the form or WhatsApp us on +6011-5119 6631

Preferred mode of training
Checkboxes