Description
Data has emerged as one of the most valuable assets in today’s interconnected digital landscape, driving innovation, commerce, and communication. However, the growing reliance on data has raised significant concerns, particularly regarding the escalating cyber threats and privacy issues.
On August 11, 2023, the Honourable President granted approval for the Digital Personal Data Protection Act (DPDPA), 2023, commonly referred to as the ‘Privacy Law’ or ‘Data Protection Law.’ This historic legislation promotes accountability in the management of digital personal data, emphasising the importance of explicit and transparent consent for data collection, processing, and storage.
Grant Thornton Bahrain is delighted to announce an online live workshop on the Digital Personal Data Protection Act to equip participants with the intricacies of data privacy and data protection. This workshop will equip you with the knowledge and skills necessary to excel in the complex realm of data privacy, empowering you to safeguard your information effectively.
Learning outcomes
After attending the masterclass, the participants will be able to:
- Develop data privacy policies and mechanisms to safeguard their organisations
- Enhance business operations and instill stakeholder confidence in their organisations
- Implement automated tools for compliance
- Create training and communication strategies to raise awareness effectively
Programme Deliverables
- 16 hours of learning content
- Access to workshop recordings for one year
- Certificate of participation
Who should attend?
- Privacy security & IT professionals
- Risk-handling professionals
- Information system & security auditors
- Students
- Compliance officers
- Lawyers
Workshop’ curriculum
| Domain |
Sub-Domain |
| Act overview and journey |
- Journey of the Act
- Applicability
- Data principal rights
- Key penalties
- Consent
- Obligations of data fiduciaries, processors & principals
- Key stakeholders involved
- Privacy principles
- Data transfer
|
| Essential Act definitions |
- Digital personal data
- Data fiduciary
- Significant data fiduciary
- Data processor
- Data principal
- Data Protection Board
- Consent manager
- Data Protection Officer
|
| Stakeholder responsibilities |
- Following roles will be discussed in detail:
- Data fiduciaries
- Significant data fiduciaries
- Data processor
- Data principals
- Data protection officer
- Responsibility of consent manager
- Data protection board of India
- Appellate tribunal
|
| Penalty framework |
- Non-Compliance of the provisions by data fiduciary, significant data fiduciary, data principals.
|
| Comparison of General Data Protection Regulation and Digital Personal Data Protection Act, 2023 |
- Key differences & similarities
|
| Chapter Summaries of the Act |
- Preliminary
- Obligations of data fiduciary
- Rights and duties of data principal
- Special provisions
- Data Protection Board of India
- Powers, functions and procedure to be followed by Board
- Appeal and alternate dispute resolution
- Penalties and adjudication
- Miscellaneous
|
| Areas requiring clarification |
- Formation of Data protection Board
- Role of consent manager
|
| Compliance roadmap |
- Gap assessment
- Data inventory
- Security controls
- Governance framework
- Data principal rights
- Third party controls
- Implementation and monitoring
- Automation and privacy enhancing technologies
|
| Assisting clients with Act compliance |
- Privacy maturity assessment
- Privacy as a service
- Third party assessment/ privacy audits
- Data privacy implementation
- Data protection
- DPO as a service
|
| Case studies |
- Leading
- Financial banks
- Hotel industry
- Healthcare sector
- IT industry
- Exercise
|
| Deliverable samples |
- Gap assessment report along with the recommendations
- Privacy roadmap
- Updated policies, procedures, contracts
- Training and awareness
|
| Grant Thornton Bahrain’s privacy support |
- Data inventory
- Data protection impact assessments
- Documentation support
- Contracts
- Privacy training and awareness
|
| Complementary Acts for various sectors |
- IT ACT
- GDPR
- ISO 27701
- CERT-IN regulations
- Master directions by RBI
- Power sector regulations
|
| FAQ |
|
Cancellation and refund policy
The refund policy in case of withdrawal of nomination would work as follows:-
- A refund of 50% of the fee would be provided for cancellation requests received up to five working days before the training start date
- Participants who cancel in less than five working days, or there is no show on the training date are liable to pay the full course fee and would not be entitled to refunds.
Cancellations must be made via emails only. However desirous participants can be accommodated in the future batches of program, without paying anything extra. It is requested that willingness to attend any future program should be communicated at the earliest convenience.
.jpg)
.jpg)
