BCS Foundation Certificate in Data Protection, FCDP
Knowledge of UK data protection law, incorporating the UK General Data Protection Regulation (GDPR) and Data Protection Act 2018, as well as the EU General Data Protection Regulation (GDPR), along with an understanding of how they are applied in practice, is important for any organisation processing personal information.
Course Style
Live Instructor Led. Face-to-Face or Attend-From-Any-Where
What is included?
- 3 days of training
- Course material/Slides
- Examination Fees
- 95% Certification Success in First Attempt
- Classroom training Or Attend-From-Any-Where
- Training delivered by Professionals with enormous industry experience
- Total comprehensive exam preparation
What you will Learn?
- The BCS Foundation Certificate in Data Protection ,will provide attendees, with a sound grounding in the key elements of the UK law, and its practical application.
Who should attend?
This qualification is primarily aimed at those who need to have an understanding of data protection, and the GDPR in particular, to do their job; or those whose effectiveness in their role would be enhanced by knowledge of the law in this area.
The Foundation Certificate will also provide a stepping stone for those who have, or who will have, some responsibility for data protection within an organisation and who intend in due course to gain the BCS Practitioner Certificate in Data Protection.
Course Outline
BCS FOUNDATION CERTIFICATE IN DATA PROTECTION Version 3.7
- AN INTRODUCTION TO THE HISTORY OF DATA PROTECTION IN THE U.K. (6%) (K1, K16, S7, S9)
1.1Demonstrate an awareness around personal data rights in the EU and the UK.
1.2Describe the territorial scope and jurisdiction of the UK GDPR (Article 3).
- PRINCIPLES OF DATA PROTECTION AND APPLICABLE TERMINOLOGY. (15%) (K1, K3, S2, S8, S9)
2.1 Define the following key items of terminology:
2.2 Describe the following data protection principles.
- LAWFUL BASES FOR PROCESSING OF PERSONAL DATA. (10%) (K1, K14, S2, S7, S13)
3.1 Explain the lawful basis to process Personal Data listed under (Article 6) of the UK GDPR
3.2 Describe the conditions permitted for processing special category data listed under Article 9 of UK GDPR/ Schedule 1 of the DPA.
- ACCOUNTABILITY PRINCIPLE. (21.5%) (K1, K2, K3, K4, K6, K8, K14, K15, K16, S1, S2, S9, S10, S11, S12, S13, B3, B4)
4.1 Identify the accountability obligations (Article 5 (2) and Article 24) UK GDPR.
4.2 Describe the purpose of a Data Protection Impact Assessment (DPIA) UK GDPR.
4.3 Explain the process of conducting a DPIA (Article 35) UK GDPR and identify when risks arising from a DPIA may need prior consultation with the ICO (Article 36) UK GDPR.
4.4 Identify the importance of keeping a record of processing activity (RoPA) (Article 30) UK GDPR.
4.5 Outline the interplay with privacy notices (Article 13 & 14) UK GDPR.
4.6 Demonstrate how to adopt a ‘data protection by design and by default’ approach (Article 25) UK GDPR.
4.7 Identify suitable information security measures (Article 32) UK GDPR.
4.8 Explain the designation, position and tasks of the Data Protection Officer (DPO) (Article 37 to 39) UK GDPR.
4.9 Explain the role of the DPO and compliance monitoring.
5. OBLIGATIONS OF CONTROLLERS, JOINT CONTROLLERS AND DATA PROCESSORS. SYLLA
5.1 Identify the controller and processor obligations.
6. INTERNATIONAL DATA TRANSFERS UNDER UK GDPR.
6.1 Explain the principles of data transfers under UK GDPR and the impact of data transfers to and from the European Union (EU).
- DATA SUBJECT RIGHTS
7.1 Explain the key rights granted to individuals (Articles 12 to 17 and 21 to 22) UK GDPR. Specifically, the candidate will be required to explain data subject rights in relation to:
7.2 Explain the fundamental rights of other information requests.
7.3 Explain the impact of AI on data rights.
- INDEPENDENT SUPERVISORY AUTHORITIES (ISAS) AND THE INFORMATION COMMISSIONER’S OFFICE (ICO). (7.5%) (K12, K14)
8.1 Express awareness of the role of ISAs under EU GDPR. (Article 57 & 58 EU GDPR).
8.2 Explain the role of the ICO.
- BREACHES, ENFORCEMENT AND LIABILITY. (7.5%) (K1, K12, S1, S9)
9.1 Explain the obligation and requirements surrounding the reporting of personal data
breaches (UK GDPR Articles 33 and 34).
9.2 Identify the powers of the ICO that can be imposed as a result of a data protection breach or data protection complaint (Article 58 UK GDPR)
9.3 Describe liabilities
- PRIVACY AND ELECTRONIC COMMUNICATIONS (EC DIRECTIVE) REGULATIONS (PECR) 2003 AND SUBSEQUENT AMENDMENTS. (5%) (K1, K12, S7, S8, S9)
10.1 Identify the relationship between the UK GDPR, Data Protection Act 2018 and PECR in respect of marketing. (Email phone, SMS, in-app messaging, push notifications).
Prerequisites
None
Career, certification and Salary
Data Protection entry level – FCDP
Information technology is changing rapidly and becoming popular in almost every aspect of life. Computers and systems play a crucial role in today’s business. They store, process, retrieve, analyse, transmit, and share information. However, bad guys commit cybercrime using the same information technology to steal sensitive information and disrupt business operations.
To curb the spread of malicious cyber activities, the UK government enact laws that organisations must follow to stay out of trouble. Data protection laws keep several issues, such as computer ethics, morals, and morals, into consideration to ensure organisations and regular citizens maintain discipline and justice in the cyber world.
Learning through the Foundation Certificate in Data Protection
Organisations must be educated in cybersecurity and data protection laws to keep up with different types of criminal activities. Educating people on data protection laws and security practices enables them to safely handle sensitive data, transactions, and records.
Foundation Certificate in Data Protection is an Data Protection entry level course, which allows you to explore the application of current data protection laws, including the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).
Who Should Acquire the Foundation Certificate in Data Protection?
This Data Protection entry level course is essential for anyone who wishes to acquire a sound grounding in the law’s key elements and practical application, particularly the UK Data Protection Act, GDPR, and PECR. If you need to understand data protection and the GDPR, then this is your qualification. The certification is also vital for candidates whose effectiveness in their role would be enhanced by knowledge of the law in this area.
The BCS certification qualification is of particular benefit to candidates working in these areas:
- Data protection and privacy
- Information governance, risk, and compliance
- Data management
- Project management
- Directors and senior managers with data protection responsibilities
- Legal and procurement
- Marketing and sales professionals
- Information security and IT
- Customer support
- Human resource
You can also acquire the Foundation Certificate that provides a stepping stone if you have responsibility for data protection within an organisation. The qualification is also essential for candidates who intend to gain the BCS Practitioner Certificate in Data Protection.
Organisations can also invest in the BCS Foundation qualification to train operational employees. This move helps workers reduce unnecessary human errors that lead to devastating and costly data breach and non-compliance cases.
What are the Entry Requirements?
Having some knowledge of data protection law and basic working knowledge of IT and GDPR would be an advantage.
What You Learn
Candidates interested in the Foundation Certificate in Data Protection will acquire a recognised qualification in data protection. The certification enables you to understand the critical changes that the UK Data Protection Act (2018) and GDPR bring to data protection.
Besides, you gain an understanding of the new rights available to data subjects and the implications of those rights with the GDPR, the UK Data Protection Act (2018), and PECR.
The Foundation Certificate Data Protection teaches about an individual and organisational responsibility under data protection laws that require businesses to maintain adequate record-keeping.
Did you know that GDPR increased data controller and processor obligations? The Foundation Certificate in Data Protection allows you to learn about the increased obligations that came into effect with GDPR.
With such a degree of knowledge, you are better placed to support your organisation in processing customer data according to GDPR and the UK Data Protection Act (2018) requirements.
Getting the Certification
You can take the Foundation Certificate in Data Protection course with an accredited training provider. The classroom course typically lasts three days.
The Exam Format
The Foundation Certificate in Data Protection has a one-hour closed book examination with 40 multiple-choice questions. The exam is supervised, and candidates cannot take materials into the examination room.
The pass mark is 26/40, or 65 per cent. The delivery can be digital, or paper based.
Candidates taking the examination in a different language from their native/official language are entitled to 25 per cent extra time.
Cyber Skills Training program follows the latest BCS Syllabus to better prepare participants. Some of the areas covered during the course include:
- An introduction to the history of data protection in the UK
- Principles of data protection and applicable terminology
- Lawful bases for the processing of personal data
- Governance and accountability of data protection within organisations
- Controller and processor obligations
- Transfers of personal data to third countries or international organisations
- Data subject rights
Breaches, enforcement, and liability