Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

Build EU GDPR data protection compliance from scratch

Name: Build EU GDPR data protection compliance from scratch
Rating: 4.6 (3486 reviews)

Preparation for IAPP certifications_FREE GDPR Templates & Documentation - Practical GDPR Blueprint

Bestseller

Highest Rated

Created byRoland Costea

Last updated 2/2025

English

What you'll learn

Lessons from ex-Microsofter and IBMer
Will have a list of 61 templates/documents that will help them start GDPR programme
Understand what GDPR needs in order to achieve compliance
Go for CIPT, CIPM and CIPP/E certification by IAPP with a comprehensive learning plan explained in lesson 4
Will have a GDPR implementation guide
Understand Online privacy issues
Understand technologies with privacy considerations and core privacy concepts
Understand how technology will help in achieving compliance
Understand lawful processing from HR point of view
Understand how to work with Cloud Service Providers (CSPs)

Course content

16 sections • 185 lectures • 15h 27m total length

Why start learning GDPR Data Privacy with me?5:40
Understand who am i and what i will offer you in this complete GDPR learning plan
What is included in this course?3:28
Understand what is included in this course and how you will benefit around it
Course Resources0:05
Complete list of course resources - 61 templates + presentations
My first promise to you - get certified in less than 30 days: CIPT, CIPM, CIPP/E3:02
My first promise to you to get CIPT, CIPM and CIPP/E certifications
One more word before we start...1:39
Understand what content I am producing further

Evolving compliance requirements4:21
GDPR training course - compliance requirements
Major Risks to a Company's IT Framework6:16
Learn about Major Risks to a Company's IT Framework
Application Related Risks4:58
GDPR training course - Application Related Risks
Network Related Risks4:59
GDPR training course - Network Related Risks
Storage Related Risks6:55
GDPR training course - Storage Related Risks
Stakeholder expectations for privacy5:07
GDPR training course - stakeholder expectations
Privacy vs Security4:16
GDPR training course - privacy vs security
IT Governance vs Data Governance1:58
GDPR training course - IT vs Data Governance
The role of the IT professional & other stakeholders in preserving5:38
GDPR Training Course - the role of the IT professional and other stakeholders in preserving privacy

Why Privacy and Security will never die!4:13
Understand why privacy and security will never die
Privacy vs Security3:49
Learn the difference between privacy and security
Privacy Risks Expand4:10
Why privacy risks expand
Cyberattacks and what makes them possible5:49
Learn about cyberattacks and what makes them possible
CIA and their privacy implications6:06
Confidentiality, Integrity, Availability or CIA and their privacy implications
Principles for Building and Operating Systems to be more secure6:21
How can we build and operate systems in a more secure way
Why does an organization need a privacy program?2:51
Why a privacy program is a must for every organization

Privacy Foundational elements - Organizational Privacy Notice5:54
Privacy Foundational elements - Organizational Privacy Notice
Privacy Foundational elements - Organizational Privacy Policy6:30
Privacy Foundational elements - Organizational Privacy Policy
Example - A great organizational privacy policy0:01
Take a look and learn from this great Organizational Privacy Policy
Privacy Foundational elements - Organizational Security Policies7:01
Privacy Foundational elements - Organizational Security Policies
Incident Response - Security and Privacy Perspectives1:53
Incident Response - Security and Privacy Perspectives
System Development Lifecycle and Enterprise Architecture3:25
System Development Lifecycle and Enterprise Architecture
Privacy Impact Assessments (PIA)6:12
Privacy Impact Assessments (PIA)
Common Privacy Principles5:42
GDPR training course - privacy principles
Data Retention Concepts and Best Practices in GDPR context7:20
Data Retention Concepts and Best Practices in GDPR context

The Collection Process - Notice4:38
Notice - part of the Collection Process
The Collection Process - Choice, Control & Consent4:40
The Collection Process - Choice, Control & Consent
Other topics related to Collection4:22
Other topics related to Collection
Use5:23
Use
Security Practices and Limitations on Use4:43
Security Practices and Limitations on Use
Disclosure7:19
Disclosure
Retention - Records, Limitations, Access5:47
Retention - Records, Limitations, Access
Retention - Security Considerations6:02
Retention - Security Considerations
Destruction7:16
Destruction

Identity and Access Management (IAM)5:23
Identity and access management under GDPR (data privacy concepts)
Limitations of Access Mgmt & Least Privilege principle3:49
Limitation of access management and least privilege under GDPR (data privacy concepts)
User Based Access Control & Role Based Access Control4:07
user based access control and role based access control under GDPR (data privacy concepts)
Context of Authority5:10
context of authority under GDPR (data privacy concepts)
Cross Site Authentication & Authorization Models3:31
cross site authentication and authorization under GDPR (data privacy concepts)
Credit card information & Processing4:28
credit card information & processing under GDPR (data privacy concepts)
PCI-DSS & PA-DSS4:52
PCI DSS and PA-DSS
Remote Access & BYOD - Privacy & Security Considerations3:54
Remote access and bring your own device policy under GDPR (data privacy concepts)
Remote Access & BYOD - Access to Computers & Architecture controls2:38
remote access and bring your own device policy under GDPR (data privacy concepts)
Data Encryption - Design Considerations3:51
data encryption design considerations under GDPR (data privacy concepts)
Application, Record and Field Encryption3:18
application, record and field encrytpion under GDPR (data privacy concepts)
File & Disk Encryption3:52
file & disk encryption under GDPR (data privacy concepts)
Encryption Regulation & Crypto Standards3:39
encryption under GDPR (data privacy concepts)
Other Privacy enhancing Technologies6:35
other privacy enhancing technologies under GDPR (data privacy concepts)
Software Notifications and Agreements4:17
software notifications and agreements under GDPR (data privacy concepts)

GDPR short overview2:47
GDPR short overview
Format and Definitions3:06
GDPR training course - Format and definitions of GDPR regulation
Principles1:12
GDPR training course - GDPR Principles
Lawfulness1:49
GDPR training course - what lawfulness means
Gap Assessment7:33
GDPR training course - gap assessment
EU Institutions5:59
Describe the EU institutions - part of CIPP/E exam
How to plan your project - preparation!2:54
GDPR training course - how to plan your project
GDPR Roles4:13
GDPR training course - GDPR roles
Data Protection Concepts5:44
Understand Data Protection Concepts
Data Subject Rights10:53
What are users data subject rights
Processors under GDPR3:40
Processors under GDPR
How to Capture Personal Data in a Form3:33
GDPR training course - personal data form
GDPR Privacy Data Protection Policy3:57
GDPR training course - privacy data protection policy
Data Subject Request Procedure2:34
GDPR training course - data subject request procedure
Data Protection Impact Assessment (DPIA)3:28
GDPR training course - DPIA
How to treat data breaches3:15
GDPR training course - how to treat data breaches
How to treat international transfers2:49
GDPR training course - international transfers
ISO 27K and GDPR mapping2:15
You will understand the relationship between ISO27K and GDPR
Privacy by Design5:24
Privacy by design under GDPR (data privacy concepts)

Processors, Controllers, Sub Processors - deep dive with examples6:11
Processors, Controllers, Sub Processors - deep dive with examples
Territorial and Material Scope of GDPR with examples7:54
Understand the Territorial and Material Scope of GDPR with examples
Sanctions under GDPR3:21
Understand what sanctions covers the GDPR
Legal Basis for Processing6:50
Understand what GDPR calls, Legal Basis for Processing
Consent5:20
Understand the Consent
Legal Basis for Processing Sensitive Data1:36
Understand the Legal Basis for Processing Sensitive Data.
Security & Breach6:25
Understand the difference between security & Breach
Legitimate interests deep dive - examples12:13
Legitimate interests deep dive - examples
Automated Decision Making & Profiling Deep Dive9:29
Data Processing Obligations
The right to data portability Deep Dive8:58
The right to data portability Deep Dive
GDPR vs ePrivacy Directive4:15
GDPR vs ePrivacy Directive
Brexit and GDPR - what has changed3:41
Brexit and GDPR - what has changed
General Principles for International Transfers3:31
General Principles for International Transfers
Schrems II - General Statements3:21
Schrems II - General Statements
Compliance with Schrems II6:30
Compliance with Schrems II
EU US Data Privacy Framework part 16:47
EU US Data Privacy Framework part 1
EU US Data Privacy Framework part 26:11
EU US Data Privacy Framework part 2

Organizational Privacy Strategy for Social Media7:14
Understand organizational privacy strategy for social media
Consumer Expectations5:58
Understand the consumer expectations for personal data under social media
Children's Online Privacy3:12
understand threats around children online privacy
Social media - personal information collected9:15
Understand social media and personal information collected around it
Social media - personal information shared and ownership4:30
Understand personal data under social media - ownership and sharing
E-commerce personalization3:27
Understand e-commerce personalization
Online Advertising3:28
Understand Online Advertising
Key considerations when posting ADs on your website2:37
Understand key considerations when posting ads
Understanding cookies, beacons and other tracking technologies6:03
Understand cookies, beacons and other tracking technologies
Cookies - Deep Dive2:56
Understand cookies exceptions and what you need to do to comply
Web Browser Privacy and Security Features7:29
Understand web privacy and security risks

Wireless Technology - RFID5:54
Wireless technology - RFID under GDPR (data privacy concepts)
Wireless Technology - NFC, Bluetooth & WiFi4:51
Wireless technology - NFC, Bluetooth & WiFi under GDPR (data privacy concepts)
Location Based Services (LBS) - generalities5:15
Location Based Services (LBS) - generalities under GDPR (data privacy concepts)
Location Based Services (LBS) - GPS5:20
Location Based Services (LBS) - GPS under GDPR (data privacy concepts)
Location Based Services (LBS) - GIS4:04
GIS under GDPR (Data Privacy concepts)
Surveillance of Individuals3:35
Surveillance of individuals under GDPR (data privacy concepts)
Data surveillance & Biometric recognition6:26
Data surveillance and biometrics under GDPR (data privacy concepts)

Requirements

You should have basic IT Security knowledge
You should have basic audit and compliance knowledge
You should have basic risk management knowledge

Description

Lessons from Chief Security Officer (CISO) of SAP

also an ex IBM-er, MICROSOFT-er, Accenture, Cognizant, Genpact and Cisco

This course is about how to make privacy operational and how to start your journey to get 3 privacy certifications in less than 30 days: CIPT, CIPM, CIPP/E by IAPP”

Please take a look at the Learning Plan and together with my other courses, especially:

- How to Succeed in a DPO role

- GDPR Privacy Data Protection Case Studies Explained

- Ultimate Privacy by Design Data Protection Course

2025 Updated - 13+ hours of GDPR content and 61 templates

No prior GDPR knowledge is needed.

CIPT, CIPM and CIPP/E certification preparation in a complete learning plan

This is the 1st course in a 6 course series that will drive you to Data Privacy expert and will allow you to go for all IAPP certifications: CIPT, CIPM and CIPP/E.

MY FIRST PROMISE TO YOU is the following: You will be prepared to pass 3 IAPP certifications in less than 30 days if you follow the below learning plan:

Course 1: Build EU GDPR data protection compliance from scratch

Course 2: How to succeed in a Data Privacy Officer Role (GDPR DPO, CIPM)

Course 3: GDPR Privacy Data Protection Case Studies Explained (CIPP/E, CIPM, CIPT)

Course 4: Ultimate Privacy by Design Data Protection Course

Course 5: Build Security Incident Response for GDPR Data Protection (incl. parts from CIPT and CIPM also)

Course 6: (part of CIPP/US): California Consumer Privacy Act (CCPA) - Complete course

Course 7: Build a Cybersecurity Career and Earn more than 150K per year

My name is Roland Costea and I am currently the Chief Security Officer (CISO) of SAP.

After spending my last 10 years working for SAP, Microsoft, IBM, Genpact and Cognizant as a Chief Security Officer or Privacy & Security Director being able to create hundreds of integrated security & privacy programmes for top organizations in the world, I have decided to put all my experience together in a comprehensive privacy LEARNING PLAN, to show how to actually make Data Privacy operational and most importantly how to think out of the box.

I have been involved in engineering privacy for a lot of industries including Automotive (Mercedes-Benz, Geely, Volvo) and also provided DPO as a service for several other top companies in Europe and US. I have worked and developed the privacy strategy for Microsoft & IBM for the whole Central & Eastern Europe and also drived Cognizant Security & Privacy business in DACH.

Certifications I hold: CIPT, CIPM, CISSP, CRISC, CISM, CCSK, CCSP, LPT, CEH, ECSA, TOGAF

Course Curricula:

Section 1: Introduction

Section 2: Understanding the need for privacy in the IT environment

Section 3: Core Privacy Concepts

Section 4: Privacy Considerations & Techniques

Section 5: Privacy in Systems and Applications

Section 6: GDPR Implementation - short intro guide!

Section 7: Online Privacy Issues

Section 8: Technologies with Privacy Considerations

Section 9: Direct Marketing Challenges

Section 10: Lawful Processing of HR Data, Contracts & Recruiting

Section 11: GDPR for Cloud Service Providers (CSPs)

Section 12: GDPR and Payment Services Directive (PSD2)

Section 13: How Technology can help in achieving GDPR compliance

Section 14: Conclusion

Who this course is for:

Anyone interested in GDPR compliance
Any security enthusiast willing to learn about GDPR
Anyone interested in how to start a GDPR programme
Anyone interested in technologies that can help achieving GDPR compliance
Anyone interested in making a turn in their career to DATA PRIVACY
Any privacy consultant, manager, director or DPO
Any lawyer interested to learn about data privacy and how technology may fit in this picture also

Build EU GDPR data protection compliance from scratch

What you'll learn

Explore related topics

Course content

Introduction5 lectures • 14min

Understanding the need for privacy in IT environment9 lectures • 44min

Privacy and Security will never die!7 lectures • 33min

Core Privacy Concepts9 lectures • 44min

Privacy Considerations & Techniques9 lectures • 50min

Privacy in Systems and Applications15 lectures • 1hr 3min

GDPR Implementation - short intro guide!19 lectures • 1hr 17min

EU GDPR Advanced17 lectures • 1hr 43min

Online Privacy Issues11 lectures • 56min

Technologies with Privacy Considerations7 lectures • 35min

Requirements

Description

Who this course is for: