Overview What You Will Learn Curriculum Instructor

Course Overview

The Build EU GDPR Data Protection Compliance From Scratch (CIPT) course is designed to equip IT professionals, compliance officers, and business leaders with a deep understanding of data privacy and GDPR compliance. As data breaches and privacy concerns continue to rise, organizations must adopt robust data protection strategies to ensure regulatory compliance and maintain customer trust. This course provides a structured approach to understanding GDPR fundamentals, its implementation in IT environments, and the role of various stakeholders in preserving data privacy.

This course begins with an introduction to privacy risks in IT frameworks, covering compliance requirements, security threats, and governance distinctions. It explores core privacy concepts such as privacy policies, security practices, impact assessments, and privacy-by-design principles. Learners will gain insights into identity management, encryption, GDPR roles, and lawful data processing. The course also delves into online privacy, direct marketing challenges, cloud service provider regulations, and PSD2 compliance. Through hands-on demonstrations, it highlights how technology can aid GDPR implementation.

By the end of this course, learners will understand GDPR regulations, privacy best practices, and risk mitigation strategies, enabling them to implement effective data protection frameworks and maintain compliance.

What You Will Learn

  • Learn about GDPR regulations and GDPR Compliance
  • Learn how to analyze a company's GDPR compliance program and to think properly through step-by-step examples
  • Learn about data privacy concepts

Program Curriculum

  • Why start learning GDPR Data Privacy with me?
  • What is included in this course?
  • $7 Million Cybersecurity Scholarship by EC-Council

  • Evolving compliance requirements
  • Major Risks to a Company's IT Framework
  • Application Related Risks
  • Network Related Risks
  • Storage Related Risks
  • Stakeholder’s expectations for privacy
  • Privacy vs Security
  • IT Governance vs Data Governance
  • The role of the IT professional & other stakeholders in preserving
  • Chapter 2 Quiz

  • Privacy Foundational elements - Organizational Privacy Notice
  • Privacy Foundational elements - Organizational Privacy Policy
  • Privacy Foundational elements - Organizational Security Policies
  • Incident Response - Security and Privacy Perspectives
  • System Development Lifecycle and Enterprise Architecture
  • Privacy Impact Assessments (PIA)
  • Common Privacy Principles
  • Chapter 3 Quiz

  • The Collection Process - Notice
  • The Collection Process - Choice, Control & Consent
  • Other topics related to collection
  • Use
  • Security Practices and Limitations on Use
  • Disclosure
  • Retention - Records, Limitations, Access
  • Retention - Security Considerations
  • Destruction
  • Chapter 4 Quiz

  • Identity and Access Management (IAM)
  • Limitations of Access Mgmt & Least Privilege principle
  • User Based Access Control & Role Based Access Control
  • Context of Authority
  • Cross Site Authentication & Authorization Models
  • Credit card information & Processing
  • PCI-DSS & PA-DSS
  • Remote Access & BYOD - Privacy & Security Considerations
  • Remote Access & BYOD - Access to Computers & Architecture controls
  • Data Encryption - Design Considerations
  • Application, Record and Field Encryption
  • File & Disk Encryption
  • Encryption Regulation & Crypto Standards
  • Other Privacy enhancing Technologies
  • Software Notifications and Agreements
  • Chapter 5 Quiz

  • GDPR short overview
  • Format and Definitions
  • Principles
  • Lawfulness
  • Gap Assessment Tool
  • Management Commitment
  • Preparation of a Project Plan
  • GDPR Roles
  • How to Capture Personal Data in a Form
  • GDPR Privacy Data Protection Policy
  • Data Subject Request Procedure
  • Data Protection Impact Assessment (DPIA)
  • How to treat international transfers
  • Data Breach and IRP
  • ISO and GDPR
  • Privacy by Design
  • Chapter 6 Quiz

  • Organizational Privacy Strategy for Social Media
  • Consumer Expectations
  • Children's Online Privacy
  • Social Media: personal information collected
  • Social media - personal information shared and ownership
  • E-commerce personalization
  • Online Advertising
  • Key considerations when posting ADs on your website
  • Understanding cookies, beacons and other tracking technologies
  • Cookies - Deep Dive
  • Web Browser Privacy and Security Features
  • Chapter 7 Quiz

  • Wireless Technology - RFID
  • Wireless Technology - NFC, Bluetooth & WiFi
  • Location Based Services (LBS) - generalities
  • Location Based Services (LBS) - GPS
  • Location Based Services (LBS) - GIS
  • Surveillance of Individuals
  • Data surveillance & Biometric recognition
  • Chapter 8 Quiz

  • Data Protection & Direct Marketing
  • The concept of Direct marketing
  • The right to opt-out
  • Marketing Requirements under e-Privacy Directive
  • Postal Marketing
  • Telephone Marketing
  • Electronic Marketing
  • Location Based Marketing
  • Online Behavioral Advertising (OBA) and GDPR
  • Chapter 9 Quiz

  • Where do privacy and HR meet?
  • More difficult to rely on Consent
  • Data Protection Principles from HR perspective
  • Consent_no_longer_an_option_for_HR
  • Legitimate interests
  • Pseudonymisation
  • Cross Border HR Data Transfers under GDPR
  • Changes to employee data management under GDPR
  • DPOs and DPIAs from HR perspective
  • Data Breaches & what to take away from that
  • Action Steps from HR perspective
  • HR related policies and procedures
  • Contracts of Employment - what to look for
  • Data Protection Policy
  • GDPR terms and how they relate to recruiting?
  • Map your recruiting data
  • Create a privacy policy for recruiting
  • Source candidates online with care
  • Ensure you job application process complies with GDPR
  • Ensure your software vendors are compliant
  • Chapter 10 Quiz

  • Cloud and GDPR Concerns
  • Looking at GDPR the right way
  • Controllers and Processors
  • CSP as a processor and GDPR
  • Technical and Organizational measures
  • Subcontracting
  • Clauses between a processor and a sub-processor
  • Changes to employee data management under GDPR
  • Codes of conduct, certifications and compliance
  • Important steps to compliance
  • Choosing a hosting provider
  • What businesses need to do
  • Software and CSPs to consider - part 1
  • Software and CSPs to consider - part 2
  • Software and CSPs to consider - part 3
  • Software and CSPs to consider - part 4
  • Advices for CSPs and Software providers
  • GDPR and IoT approach
  • There is far more in this space
  • GDPR requirements in an IoT context
  • Robots, AI, IoT and BigData
  • Chapter 11 Quiz

  • What is PSD 2 and main objectives
  • Benefits for consumers
  • Scope of PSD2 directive
  • New rules on authorization and supervision
  • Security of Payments
  • New types of service providers - TPPs
  • Impact of PSD2 to financial services industry
  • New risks associated with the TPPs
  • Banks are caught between GDPR and PSD2
  • Other challenges - GDPR and PSD2
  • What is Open Banking Consent Model
  • Consent Step
  • Authentication Step
  • Authorization Step
  • Redirection
  • Data Minimization & Permissions
  • Chapter 12 Quiz

  • What you will be learning in this section
  • Identity Protection demo (AAD IP)
  • Privileged Identity Management demo (PIM)
  • Mobile Productivity policies demo (Intune)
  • Classification, Labelling and Protection of Information demo (AIP)
  • Cloud application visibility and security demo (Cloud App Sec)
  • Security in cloud infrastructure environment demo
  • Defending and remediating endpoints from cloud demo
  • Chapter 13 Quiz
Load more modules

Instructor

Roland Costea

Roland is a cybersecurity, privacy, and cloud leader and strategist with a demonstrated experience in running cybersecurity & cloud business units, practices, divisions from zero to maturity with year over year quality growth and quota over-achievement (projects of more >50 million euro/year). Roland has the following certifications: CISSP, CIPM, CIPT, CIPP/E, CRISC, CISM, CCSK v4, CCSP, LPT, CEH, ISO 27001LA, TOGAF.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Fastest Way to Level Up Your Cybersecurity Skills

Invest in your future with flexible subscription plans that give you access to the world’s largest online cybersecurity course library. Whether you're exploring cybersecurity courses for beginners or advancing your expertise,
access in-demand courses, practical labs, and CTF challenges designed to support continuous learning.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Build your cybersecurity skills with 900+ bite-sized courses and curated learning paths designed for continuous learning.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 880+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Develop real-world cybersecurity skills through hands-on labs and CTF challenges designed for practical learning.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro, Plus:

  • 1600+ Hands-on lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Hands-on Labs and Challenges added every month

Related Courses

  • Bootstrap 4 Quick Website Bootstrap Components Course
    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches
    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course
    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS
    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training
    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes
    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally
    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

  • Mastering Ansible Playbooks: Debugging and Security
    Short Course

    Mastering Ansible Playbooks: Debugging and Security

    Software Development

    Securing and Automating Linux and Windows Systems with Advanc...

    $99.99

    Advanced

    5 hr 34 m

1 50
View all