IDM Professional Certificate in GDPR



£1,194 inc VAT
Payment options

Invoice or credit card

Between jobs discount - 25%

Charity discount - 15%

Study method
Online, self-paced
12 Months
Level 5 Certificate
35 CPD points / hours
Professional What's this?
Additional info
  • Exam(s) / assessment(s) is included in price

40 students enquired about this course

Add to basket or enquire

Enquire now


Expert level | 2-day and/or online

This award winning professional qualification course provides DPOs and senior marketing managers with a solid working knowledge of the practical implications of the GDPR. Validated by the DMA.

During your Qualification you will gain:

  • A solid working knowledge of the practical implications of the General Data Protection Regulation (GDPR) to help you avoid heavy fines and damage to your business’ reputation

This Certificate programme was awarded the Memcom 2018 Best Training or Accreditation Initiative and has been developed in partnership with the DMA Legal Team, DMA Responsible Marketing Committee and the GDPR External Working Party.


Level 5 Certificate
35 CPD points / hours


Module 1: Introduction to GDPR

  • Understand how the General Data Protection Regulation (GDPR) will affect processing outside of the EU
  • Recognise how the new GDPR was developed by EU lawmakers
  • How will the new law be enforced?
  • Key definitions and scope
  • The global scope of the new legislation
  • Who is affected by the Regulation and what are the responsibilities?

Module 2: The principles of GDPR

  • The concepts behind the principle of Accountability
  • What the principle of accountability will mean to your businesses
  • The use of Data Protection Impact Assessments (DPIA) tools to measure accountability
  • The role of the Data Protection Officer (DPO) to keep checks on accountability
  • The importance of keeping records of processing activities

Module 3: The requirements for consent

  • What valid consent is under the GDPR
  • When organisations must use consent
  • When consent is not appropriate
  • Key practical changes to make to your consent statements
  • How long consent lasts for

Module 4: Legitimate interests

  • What is it?
  • How to conduct the balancing test
  • Relevant examples of use and risk mitigations

Module 5: Automated processing, including profiling

  • Definition and the 3 types of profiling
  • What are the specific requirements and conditions?

Module 6: Individuals rights under GDPR and information to be given to data subjects under GDPR

  • Right to object
  • Access to data & right to rectification
  • Right to be forgotten & right to erasure
  • Data minimisation
  • Right to data portability
  • Article 13: Information to be provided where personal data are collected from the data subject
  • Article 14: Information to be provided where personal data have not been obtained from the data subject

Module 7: Good data governance, data security and cloud computing

  • Role of a Data Protection Officer
  • Conducting a Data Protection Impact Assessment (DPIA)
  • Conducting a Data Protection Compliance Review (DPCR)
  • How to undertake risk minimisation measures
  • Data retention
  • Staff training
  • Understand data security risks
  • Ability to pursue confinement and data minimisation strategies
  • What are the changes to contracts under GDPR ISO27001 overlap
  • Cloud, computing considerations
  • Mobile technologies
  • Tokenisation
  • Data leakage monitoring

Module 8: Action planning

  • Preparing an action plan for pre-implementation
  • Designing a ‘security aware’ culture
  • Managing data in a structured way

Who is this course for?

Choose this award-winning Professional Certificate for an in-depth understanding of the GDPR and how to make your business compliant.


It is recommended that you already have a working knowledge of the basics of GDPR. For instance after having completed the IDM Award in GDPR or attended the IDM GDPR: Basics, GDPR: Essentials or GDPR: In Practice courses.

Career path

This qualification is recommended for employees who are directly accountable for Data Protection within their organisations and aiming to becoming a senior marketing professional or DPO.

Questions and answers

Rating and reviews

There haven't been any reviews for this course yet.

Leave a review