The course is based on both theory and practical exercises in the implementation of a DPIA. The course includes the implementation of Risk Assessment and review of considerations regarding Privacy by Design.

During the DPIA we provide not only a helicopter view of what needs to be done to be compliant, but also the role and responsibilities of the data controller to be compliant with the GDPR.

How can the data controller perform a Data Protection Impact Assessment (DPIA) where the processing of personal data () is likely to result in a high risk to the rights and freedoms of the individuals? We take into consideration both the new technologies as well as simple DPIA templates. We will go through ISO 29134 — Guidelines for privacy impact assessment in the third module and use the ICO template for the DPIA during the seminar.

During the workshop participants will perform an evaluation of personal data aspects based on automated data processing, including profiling or processing particular or special categories of personal data on a large scale;

We will also go thru the components of systematic monitoring of a publicly accessible area. Participants will get standard procedures for all personal data processing operations so that they are easier to implement a DPIA can document and carry out a DPIA as a routine task. Some DPIA templates will be provided.

The course is conducted in Danish.

Who should attend this workshop

  • Internal Audit Managers and Staff
  • IT Security Officers
  • Information Security Managers
  • IT Analysts/IT Auditors
  • Data Controllers
  • Data Processors
  • Legal Counsel
  • IT and Data Consultants and project managers involved in data protection, information security or cyber security issues
  • IT and Data Consultants and project managers that participate in GDPR projects.
  • Individuals with some IT experience who want to qualify on GDPR issues.


Kersi F. Porbunderwalla

President and CEO

Is the President and CEO of The EUGDPR Institute and Secretary-General of Copenhagen Compliance®. He functions as an advisor, teacher, instructor, researcher, commentator and practitioner on Data Protection and Data Privacy, Governance, Risk Management, Compliance and IT security (GRC), Bribery, Fraud and Corruption (BFC) and Corporate Social/Stakeholder Responsibility (CSR) issues.