Protecting personal data has been an important issue for many years. The EU GDPR extends the data rights of individuals and requires organizations to develop clear policies and procedures to protect personal data and adopt appropriate technical and organizational measures. UK organizations have had to comply with the Regulation since 25 May 2018, or potentially face fines of up to 4% of annual turnover or €20 million – whichever is greater. Learning Outcomes: This 10 webinar series is intended to elicit a clear understanding of the core elements of the GDPR, with the ability to gain a deeper understanding by asking the trainer questions during the training. It covers how each aspect of the Regulation can be translated into implementation actions in your organization and the auditor’s role. Who should attend?  Internal auditors  External auditors  Compliance officers  Privacy managers  Data protection managers.  Information security managers.  IT managers.  Project managers.  Corporate governance managers.  Risk and compliance managers.  General or privacy counsels; and  Finance, HR or marketing managers.  Specialist IT Auditors  Risk managers Program Outline for Webinar 8: • The security of personal data. • An organizational risk management framework. • Legal requirements for a DPIA. • How to conduct a DPIA with a DPIA tool.