GDPR: Requirements for Data Controllers and Data Processors
This course is approved for continuing legal education (CLE) credit in CA, CT, NJ, and NY: 1.75 CLE credits for CA. Please check with your local bar association for reciprocal state credit. Reporting requirements vary by state and we recommend that you check with your state's bar association for their guidelines on reporting requirements.
On May 25, 2018, the European Union's General Data Protection Regulation (GDPR) went into effect. The GDPR is, arguably, the most significant legislation pertaining to the protection of privacy and personal information and, with its reach outside of the EU, will impact business entities on a global scale. This course examines the role and responsibilities of business entities subject to the GDPR (i.e., data controllers and data processors). The course addresses and expands upon key GDPR requirements for data controllers and data processors, including the relationship between data controllers, processors, and supervisory authorities, appointment of a data protection officer, privacy by design, data protection impact assessment, data protection and storage, data transfers, and lawful processing of data.
You will have 90 days from your date of enrollment to complete the course.
You will understand the major roles and obligations for business entities covered by the GDPR (i.e., data controllers and data processors).
You will understand the relationship between data controllers and data processors, including the differences between the two, their interactions with each other, and respective relationships to supervisory authorities.
You will understand the role of the data protection officer and the key GDPR requirements facing data controllers and data processors (e.g., lawful processing of data, privacy by design, data protection impact statement, data protection and storage).