Effective, low burden, Data Protection Impact Assessments, GDPR Impact Assessments, PECR Impact Assessments or Privacy Impact Assessments (PIA) all follow the same approach. They are powerful tools that help reduce the risk of data protection breaches and the follow on costs. They help organisations meet challenges presented by GDPR , PECR and data protection legislation better by embedding “privacy by design”.

The UK-GDPR imposes stringent standards for data protection on all UK businesses and organisations be they private, public or not for profit. The penalties for breaching the legislation are huge, couple this with the frequency that breaches are reported and it is imperative that all businesses and organisations start to focus on privacy by design and privacy impact assessments.

In simple terms privacy needs to be considered at each and every stage of every policy, procedure, practice and project; that is to say a privacy impact assessment (PIA) needs to be used throughout. PIAs support privacy by design – that is to say to ensure privacy and data protection compliance is embedded from the start and compliance with data protection legislation is enhanced. Without a robust PIA, privacy and confidentially issues are often bolted on as an after-thought or even ignored altogether.

Our course explains all, it helps you understand what privacy impact assessments are, how they work, the approaches that make them robust and what is needed to make them easy to use.

For Whom
This workshop is suitable for directors, managers, staff and volunteers from business and organisations in all sectors. The day can be tailored to the codes of practice used in the private, public and voluntary sectors and tailored and reconciled with your in-house policies and procedures.

It is however important that anyone attending the workshop should already have a good working knowledge of the Data Protection Act and The GDPR. Our related courses on the GDPR and PECR provide the necessary background information for those needing to refresh their knowledge on data protection.

Content
In a lively interactive workshop, participants focus on: –

What is a Privacy Impact Assessment (PIA)?
Definition of Privacy and Intrusion
Aim and Purpose of a PIA
Benefits of a PIA
Information Commissioners Code of Practice for PIAs
Key laws relating to Privacy and Intrusion
Definition of High Risks to Privacy
Impact of High Risks for the Individual/Organisation and
Compliance
Eight Potential High Risks
Nine Different Steps an organisation can take to reduce High Risks
The PIA Screening Process
The Six Steps after Screening
Reconciling the Screening and Six Steps with Data Protection Act/GDPR
Step by step live case study of a PIA with feedback

FEEDBACK – EXAMPLE COMMENTS FROM PREVIOUS DELEGATES

Please Note: We always respect client privacy and confidentiality. We do not collate any identifiable delegate information on our course feedback forms. We only publish comments where express permission for marketing and promotional use, has been given. The majority of delegates do not give this permission.

“Very Good, I would strongly recommend”
“Very good, using our own examples was very beneficial”

MORE - Data Protection Courses

Data Protection, GDPR, PECR and DUAA Reference Guides

Data protection is the process of safeguarding important information from corruption, compromise, or loss, while ensuring personal data is handled lawfully, transparently, and securely. The legislation is complex and the protentional fines for breaches huge. our Data Protection, GDPR and PECR training courses bring you up to date with the latest developments and help you make sure you are 100% compliant. Our reference documents provide outline guidance.

Data Protection Complaints Policy Template & Guidance

All organisations are required to publish their policy and procedure for make a complaint about the organisations data protection. This free to use reference document and template is free to download and use

GDPR Necessary, Fair and Transparent Explained

Before an organisation or business processed any personal data it has to ensure there is a legal basis for processing. It has to be necessary, fair and transparent. Many organisations fail to meet these requirements are put themselves at risk. Find out more about good process in this reference document

How frequent should GDPR Data Protection Training be?

This a frequently asked question and one we attempt to answer. The one over-arching answer is to risk assess, many find this too vague so we try to be more helpful in this guide

The ICO guide to the PECR – PDF

The ICO is responsible for overseeing adherence to the PECR. This PDF document summarises all, alternatively see the ICO website

FAQ - Frequently Asked Questions about this Training

If you can’t find the answer you’re looking for, feel free to contact our support team.

Why should you use Concrew Training?

Specialist HR, Employment Law & Compliance training provider
We reference to official Government bodies such as ACAS, ICO, EHRC
Content tailored to your policies and procedures
CPD certificates included
12 months of post-course support
UK-wide delivery
Online and face-to-face options
Open and transparent pricing

What information is available on course content?

We publish detailed course overviews for all courses. These provide indicative content based on the course learning plans. Final content is tailored to each client’s individual requirements.

What other information is available on individual courses?

Free reference guides and resources to help employers evaluate training quality and improve workplace compliance

Downloadable resources available via our website
Customer feedback and testimonials published on our website

Can you include our company policies and procedures in the training?

Yes. We actively encourage this approach. Including your policies and procedures helps demonstrate how, where, and why good practice applies within your organisation. This contextualises the learning, improves engagement, and increases the practical value of the training. There is no additional charge for incorporating your policies and procedures.

How long do Concrew Training courses last?

Standard courses: 6 hours of learning (approx. 7 hours including breaks)
Condensed 3-hour sessions available
Extended sessions or multi-day programmes available

How many people can attend each course?

Online courses: up to 15 participants
Face-to-face courses: up to 20 participants
Whole workforce awareness sessions: available for larger groups

Where does Concrew Training deliver training?

Online: via your preferred video conferencing platform (Zoom, Teams, etc.) across the UK
Face-to-face: on your premises in England, Scotland, and Wales

How much does your training cost?

Typical prices range from £800 to £2,000 excluding VAT. Final cost depends on course duration, location, number of participants, and payment terms.

Full pricing details available on our website
No hidden charges
Formal quotations remain valid for 30 days

What are your courses like?

Our courses are delivered as interactive workshops rather than traditional lectures, and typically include:

Subject specialist input
Interactive quizzes
Group discussions
Practical exercises
Real-world case studies

We incorporate your organisation’s policies and procedures wherever possible to ensure the learning is relevant, engaging, and immediately applicable.

Who delivers the training?

Training is delivered by experienced subject specialists with extensive knowledge in their field. Our trainers:

Have significant practical experience
Can answer most participant questions during the session
Provide follow-up responses for complex questions
Are skilled facilitators who make technical subjects engaging

Do you issue CPD certificates?

Yes. All participants receive a CPD certificate detailing learning hours completed and headline course content.

Who uses your training services?

We work with organisations of all sizes, including:

Large international organisations
Public sector employers
Charities and not-for-profits
SMEs and local businesses

Attendees commonly include directors, senior leaders, HR professionals, operational managers, line managers, employee representatives, and staff teams. Customer feedback and testimonials are available on our website.

Why should I book a Concrew Training course?

Our training is:

Delivered live by subject specialists
Designed for real-world application
Suitable for teams of up to 20 participants
Available face-to-face in England, Scotland, and Wales
Available online across the UK
Practical, engaging, and immediately applicable
High-quality and competitively priced

Suitable for directors, senior leaders, HR teams, operational managers, line managers, staff teams, and employee representatives.

How far in advance should we book training?

We recommend booking training 2–3 months in advance. Availability is generally good with a three-month lead time. Dates are only reserved once a booking is confirmed. Short-term bookings may be limited.

How do I book a course?

Complete our quote request form
Receive a formal quotation and provide any delivery details
Confirm your booking
Receive a formal Delivery Confirmation and “What Happens Next” guidance

Is there anything else I will need to do?

For online courses

Schedule the event on your video conferencing platform
Share joining details with attendees
Provide the trainer profile and course overview

For face-to-face courses

Book the room/venue and required equipment
Share trainer details and course overview with attendees
Print and provide handouts to the trainer prior to the session

After the course

Distribute post-course handouts and CPD certificates

How does your 12-month post-course support service work?

Email us with any training-related questions that arise following the course. We provide guidance and support relating to the training content covered.

Note: This service is not a substitute for legal advice.

What happens if I have more questions?

We’re here to help. You can contact us at any stage before, during, or after your training programme, and we will be happy to answer any questions you may have.