This course provides a comprehensive guide to the General Data Protection Regulation (GDPR), the EU’s landmark legislation on data protection and privacy. Since its enforcement in May 2018, GDPR has reshaped how organizations worldwide collect, process, and protect personal data. It applies to all entities handling data of EU residents, regardless of where they are based, and establishes strict principles for lawful processing, accountability, and transparency. Participants will explore GDPR’s origins, scope, and core principles; the rights of data subjects; and organizational responsibilities for controllers and processors. Key topics include consent requirements, breach notification obligations, international data transfers, vendor management, and record-keeping. The course also highlights enforcement actions, compliance strategies, and future developments in data protection. Through case studies and practical steps, learners will gain the knowledge and tools to ensure compliance, build trust, and foster a culture of privacy within their organizations.
- Teacher: Constantinos Avgoustou