Training Program for Data Protection Officer (DPO)

Awarded By

To be a pioneering university that empowers future leaders through academic excellence, research, and industry-driven innovation. As we transition into a multidisciplinary institution with the Faculty of Computing, Faculty of Business, and Faculty of Education, we remain committed to maintaining our legacy as Sri Lanka’s leading institution in cybersecurity while expanding our academic horizons to shape the future of education and industry.

CICRA Campus

Talk to us about your
study options

Thinking about studying at CICRA? Book a time with us to discuss your study options.

Enquire Now

Book a Session

Student Enquiries:

+94 710 600 800

Apply Now

Program Content for a Data Protection Officer (DPO) based on Personal Data Protection Act No. 9 of 2022 of Sri Lanka.

From Compliance to Practice: Official Training for Data Protection Officers

The program is divided into two levels:

Level 1: Data Protection Principles and Foundations
Level 2: Data Protection Implementation and Practice

Level 1: Data Protection Principles and Foundations

Introduction

This foundational module provides participants with a comprehensive introduction to data protection principles and practices. It establishes a strong understanding of the legal framework, key terminology, and the role of the Data Protection Officer (DPO). Participants will learn about the core principles that govern lawful data processing and the fundamental rights of data subjects.

Objectives

Upon completion of this module, participants will be able to:

Understand the role and responsibilities of a Data Protection Officer (DPO).
Explain the key concepts and principles of data protection.
Describe the legal framework governing data protection, including the Personal Data Protection Act No. 9 of 2022.
Identify and apply the core principles of lawful data processing.
Understand data subject rights and the requirements for obtaining and managing consent.

Level 2: Data Protection Implementation and Practice

Introduction

This advanced module builds upon the foundational knowledge of data protection principles and delves into the practical aspects of implementation and management. Participants will learn how to conduct personal data audits and Data Protection Impact Assessments (DPIAs), manage data security and breaches, handle data transfers, and build a comprehensive data protection framework within their organization.

Objectives

Upon completion of this module, participants will be able to:

Conduct a personal data audit to identify and assess data processing activities.
Perform a Data Protection Impact Assessment (DPIA) to evaluate and mitigate risks associated with data processing.
Develop and implement data security measures and incident response plans.
Manage data breaches effectively, including notification procedures.
Understand the requirements for data transfers and third-party management.
Build a data protection framework, including policies, procedures, training, and auditing mechanisms.

For Whom

Data Protection Officers
Privacy professionals
Legal and compliance officers

IT and Infosec managers
HR professionals
Anyone processing personal data

Course Contents

Level 1: Data Protection Principles and Foundations

Module 1: Role of a Data Protection Officer
Module 2: Introduction to Data Protection
Module 3: Principles of Data Protection
Module 4: Data Subject Rights and Consent Management
Module 5: Performing a Personal Data Audit

Level 2: Data Protection Implementation and Practice

Module 6: Performing a DPIA
Module 7: Security Context
Module 8: Data Breach Management
Module 9: Data Transfers and Third-Party Management
Module 10: Building a Data Protection Framework
Module 11: Enforcement and Penalties
Module 12: Practical Exercises and Case Studies

Enquiries

Ready to get started?
Enquire Now

I accept CICRA's Terms of Service and Privacy Policy