ABSTRACT
Chapter 14 discusses the reason why staff training is required and the key points that should be covered as part of this training. To assist the reader there are a series of PowerPoint slide packs and a Game of “GDPR” Snakes and Ladders available via the companion website at www.pppmanagement.co.uk/resources. GDPR requires organisations to make sure that anyone acting on their behalf who has access to personal data does not process that data unless they have been instructed to do so. It is therefore vital that all those involved in processing the data understand the importance of protecting personal data and are familiar with the policies and procedures in place. Every organisation will therefore need some type of GDPR awareness training. This way the organisation can ensure that everyone is aware of what the legislation is, how and why they need to comply with it and what they must do if a Data Subject contacts them to exercise their rights. The chapter provides advice for larger organisations wishing to seek out specific classroom training courses (for DPOs, Risk and Compliance staff and senior management) and smaller organisations looking for self-service style courses or companies offering “in house” training solutions.
