GPDR and Data Protection Training Course

High quality, high impact, high value GDPR training and Data Protection Training

Concrew Training’s GDPR and data protection training course brings participants up to date on the very latest requirements of the GDPR and Data Protection Laws, including The Data (Use and Access Act) 2025. 

The course also provides an opportunity for participants to review their own organisations data protection policies and procedures, to raise question and receive answers, guidance and sign posting to further sources of support and help

Participants gain a better understanding of how to improve their organisation’s GDPR compliance, meet data protection regulations and data protection legislation, including The Data (Use and Access) Act 2025

Regular training on Data Protection and the GDPR (general data protection regulation) is essential for all managers, HR teams, Volunteers and ITC/data specialists and Staff. Firstly, because the number of data protection breaches and GDPR breaches remains worryingly high.

No organisation can afford to ignore or get data protection wrong. Data Protection covers every employer and every organisation. To maintain knowledge and awareness Concrew Training recommend high quality data protection training at least every 2 years and annually for higher risk organisations and Data Protection officers.

For Whom?

Concrew Training offer a range of courses to suit all needs. This one-day course is targeted at DPO and managers operating within higher environments. We can adapt content to for lower risk environments and for staff place greater emphasis on common risks and prevention.

DATA PROTECTION TRAINNG COURSE CONTENT

  1. Data Protection Law, GDPR and General Principles
    The first part of the course explains the key principles and practice that underpin effective Data Protection. The rationale behind it and its links to other laws governing the employment of staff and provision of services in the context of handling and processing data are explained.
  • The Data Protection Act and Data Security
  • GDPR compliance, data protection compliance
  • The 6 principles of the GDPR, GDP R and links to other Legislation
  • Defining what is meant by protected data, personal data and sensitive data
  • Defining and exploring the roles of the: –
  • Data Controller and Processor
  • Data Subject and Users, including Secondary Data Subject and Third Parties
  • Information Commissioner
  • Role of an Internal Data Compliance Officer
  • Defining “processing” and “fair processing”
  • Considerations that need to be addressed for fair and legal processing
  • Sensitive data, sensitive personal date, the different considerations that need addressing
  • Data security issues – organisational & technical
  • Securing and Evidencing GDPR Consent
  • Individual rights and responsibilities
  • GDPR complaints
  • Current Sanctions, Fines and Penalties
  1. The General Data Protection Regulations (GDPR) – In Greater Detail
    The GDPR regulations are explored in more detail. Starting with the Definition of “Personal Data.”, participants work through the following menu of topics.
  • Privacy Management
  • Privacy by Design
  • Privacy Practice
  • Data Sharing Agreements with Cloud Service Providers
  • Record Keeping
  • Information Provided at Data Collection
  • Who needs to be told what and when
  • Profiling
  • Processing data and determining criteria about persons
  • Opting Out
  • Legitimate Interests & Direct Marketing
  • Destruction and alteration of data
  • Notifications – Breaches & Exceptions
  • Data Subject Access Requests
  • The Right to Data Portability
  • Retention & The Right to be Forgotten

Threaded into the course are the expected components of change arising from the new UK Data Protection and Digital Information Safety Bill. These new measures, subject to parliamentary amendment, include:-

  • Definition of a living identifiable person
  • Possible exemptions to the practice of “record keeping”
  • More flexibility around the practice of data protection risk assessments
  • Clarification about the need and/or scope of a Data Protection Officer
  • New definition of the term “legitimate interest” and the abolition of the “balancing test”
  • Introduction of a more robust definition about vexatious data subject access requests

  1. UK PECR, the Privacy and Electronic Communications Regulations

Session 3 provides a headline overview of the PECR which works in conjunction with the GDPR to ensure data processing in respect of electronic communications, web site, social media, emails, phone calls and marketing are secure.

Concrew Training’s one day course on understanding the PECR for marketers is recommended for those needing a more in depth understanding on the related Privacy and Electronic Communication Regulations.

4. The Data (Use and Access) Act 2025 (DUAA)

  • Automated Decision Making
  • Subject Access
  • Children’s Data Protection
  • Scientific Research
  • Recognised Legitimate Interests
  • International Data Transfers
  • Responding to Complaints
  • Storage and Access Technologies including cookies
  • Changes to Parts 3 & 4 of the Data Protection Act 2018
  • Implementation Time Lines

FEEDBACK – EXAMPLE COMMENTS FROM PREVIOUS DELEGATES

Please Note: We always respect client privacy and confidentiality. We do not collate any identifiable delegate information on our course feedback forms. We only publish comments where express permission for marketing and promotional use, has been given.  The majority of delegates do not give this permission. 

  • “Excellent and very informative”
  • “Very good and informative training”
  • “Very engaging – made quite a “dry” subject interesting”
  • “Informative – well paced”
  • “facilitator was very engaging – thank you”
  • “Very Good”
  • “Well presented”
  • “really useful information”
3 hour short course available - click here for more information

MORE - Data Protection Courses

Image of book with GDPR on cover - data protection training courses from Concrew Training
GDPR & Data Protection Training
Data Protection - Training Courses
Data (Use and Access) Act Training Course
UK GDPR - Data Protection Training Course
PECR Training Course
Preventing Data Protection Breaches Training
Data Protection Impact Assessment Training
Information Governance

Data Protection, GDPR, PECR and DUAA Reference Guides

Data protection is the process of safeguarding important information from corruption, compromise, or loss, while ensuring personal data is handled lawfully, transparently, and securely.  The legislation is complex and the protentional fines for breaches huge.  our Data Protection, GDPR and PECR training courses bring you up to date with the latest developments and help you make sure you are 100% compliant. Our reference documents provide outline guidance. 

Data Protection Complaints Policy Template & Guidance

All organisations are required to publish their policy and procedure for make a complaint about the organisations data protection.  This free to use reference document and template is free to download and use 

GDPR Necessary, Fair and Transparent Explained

Before an organisation or business processed any personal data it has to ensure there is a legal basis for processing. It has to be necessary, fair and transparent.  Many organisations fail to meet these requirements are put themselves at risk.  Find out more about good process in this reference document

How frequent should GDPR Data Protection Training be?

This a frequently asked question and one we attempt to answer. The one over-arching answer is to risk assess, many find this too vague so we try to be more helpful in this guide

The ICO guide to the PECR – PDF

The ICO is responsible for overseeing adherence to the PECR.  This PDF document summarises all, alternatively see the ICO website 

FAQ - Frequently Asked Questions about this Training

If you can’t find the answer you’re looking for, feel free to contact our support team.

Why should you use Concrew Training?

  • Specialist HR, Employment Law & Compliance training provider
  • We reference to official Government bodies such as ACAS, ICO, EHRC
  • Content tailored to your policies and procedures
  • CPD certificates included
  • 12 months of post-course support
  • UK-wide delivery
  • Online and face-to-face options
  • Open and transparent pricing

What information is available on course content?

We publish detailed course overviews for all courses. These provide indicative content based on the course learning plans. Final content is tailored to each client’s individual requirements.

What other information is available on individual courses?

Free reference guides and resources to help employers evaluate training quality and improve workplace compliance

Can you include our company policies and procedures in the training?

Yes. We actively encourage this approach. Including your policies and procedures helps demonstrate how, where, and why good practice applies within your organisation. This contextualises the learning, improves engagement, and increases the practical value of the training. There is no additional charge for incorporating your policies and procedures.

How long do Concrew Training courses last?

  • Standard courses: 6 hours of learning (approx. 7 hours including breaks)
  • Condensed 3-hour sessions available
  • Extended sessions or multi-day programmes available

How many people can attend each course?

  • Online courses: up to 15 participants
  • Face-to-face courses: up to 20 participants
  • Whole workforce awareness sessions: available for larger groups

Where does Concrew Training deliver training?

  • Online: via your preferred video conferencing platform (Zoom, Teams, etc.) across the UK
  • Face-to-face: on your premises in England, Scotland, and Wales

How much does your training cost?

Typical prices range from £800 to £2,000 excluding VAT. Final cost depends on course duration, location, number of participants, and payment terms.

  • Full pricing details available on our website
  • No hidden charges
  • Formal quotations remain valid for 30 days

What are your courses like?

Our courses are delivered as interactive workshops rather than traditional lectures, and typically include:

  • Subject specialist input
  • Interactive quizzes
  • Group discussions
  • Practical exercises
  • Real-world case studies

We incorporate your organisation’s policies and procedures wherever possible to ensure the learning is relevant, engaging, and immediately applicable.

Who delivers the training?

Training is delivered by experienced subject specialists with extensive knowledge in their field. Our trainers:

  • Have significant practical experience
  • Can answer most participant questions during the session
  • Provide follow-up responses for complex questions
  • Are skilled facilitators who make technical subjects engaging

Do you issue CPD certificates?

Yes. All participants receive a CPD certificate detailing learning hours completed and headline course content.

Who uses your training services?

We work with organisations of all sizes, including:

  • Large international organisations
  • Public sector employers
  • Charities and not-for-profits
  • SMEs and local businesses

Attendees commonly include directors, senior leaders, HR professionals, operational managers, line managers, employee representatives, and staff teams. Customer feedback and testimonials are available on our website.

Why should I book a Concrew Training course?

Our training is:

  • Delivered live by subject specialists
  • Designed for real-world application
  • Suitable for teams of up to 20 participants
  • Available face-to-face in England, Scotland, and Wales
  • Available online across the UK
  • Practical, engaging, and immediately applicable
  • High-quality and competitively priced

Suitable for directors, senior leaders, HR teams, operational managers, line managers, staff teams, and employee representatives.

How far in advance should we book training?

We recommend booking training 2–3 months in advance. Availability is generally good with a three-month lead time. Dates are only reserved once a booking is confirmed. Short-term bookings may be limited.

How do I book a course?

  1. Complete our quote request form
  2. Receive a formal quotation and provide any delivery details
  3. Confirm your booking
  4. Receive a formal Delivery Confirmation and “What Happens Next” guidance

Is there anything else I will need to do?

For online courses

  • Schedule the event on your video conferencing platform
  • Share joining details with attendees
  • Provide the trainer profile and course overview

For face-to-face courses

  • Book the room/venue and required equipment
  • Share trainer details and course overview with attendees
  • Print and provide handouts to the trainer prior to the session

After the course

  • Distribute post-course handouts and CPD certificates

How does your 12-month post-course support service work?

Email us with any training-related questions that arise following the course. We provide guidance and support relating to the training content covered.

Note: This service is not a substitute for legal advice.

What happens if I have more questions?

We’re here to help. You can contact us at any stage before, during, or after your training programme, and we will be happy to answer any questions you may have.