Cover image for EU GDPR: A Pocket Guide, School's edition

EU GDPR: A Pocket Guide, School's edition

Author Alan Calder
Release Date: 2018/09/01
ISBN: 9781787780057
Topic:
0%
14
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Book Description

The EU General Data Protection Regulation (GDPR) unifies data protection and unifies data protection across the EU. It applies to every organisation in the world that handles EU residents’ personal data – which includes schools.

The Regulation introduces a number of key changes for schools – and the change from compliance with the Data Protection Act 1998 (DPA) to GDPR compliance is a complex one. We have revised our popular EU GDPR – A Pocket Guide to include specific expectations of and requirements for schools, and provide an accessible overview of the changes you need to make to comply with the Regulation.

    GDPR – A Pocket Guide Schools’ Edition sets out:
  • A brief history of data protection and national data protection laws in the EU, including as the UK’s DPA);
  • Explanations of the terms and definitions used in the GDPR;
  • The key requirements of the GDPR;
  • The need to appoint a data protection officer (DPO);
  • The lawful basis of processing data and when consent is needed; How to comply with the Regulation; and
  • A full index of the Regulation, enabling you to find relevant articles quickly and easily.
This pocket guide is the ideal resource for anyone wanting a clear, concise primer on the GDPR.

Table of Contents

  1. Cover
  2. Title
  3. Copyright
  4. About the Author
  5. Contents
  6. Introduction
  7. Chapter 1: A brief history of data protection
  8. Chapter 2: Terms and definitions
  9. Chapter 3: The Regulation
    1. Principles
    2. Applicability
    3. Data subjects’ rights
      1. The GDPR and children
      2. Consent
      3. Right to be forgotten
      4. Data portability
    4. Lawful processing
    5. Retention of data
    6. The “one-stop shop”
    7. Records of data processing activities
    8. Data protection impact assessments
    9. Data protection by design and by default
    10. Controller/processor contracts
    11. The data protection officer
    12. Accountability and the governing body or board
    13. Data breaches
    14. Encryption
    15. International transfers
      1. EU-US Privacy Shield
      2. Adequacy
      3. Binding corporate rules
      4. Standard data protection clauses
    16. Additional considerations
      1. Changes to the ‘Cookies Law’
      2. The Directive on security of network and information systems (NIS Directive)
  10. Chapter 4: Complying with the Regulation
    1. Repercussions
    2. Understanding your data: where it is and how it is used
    3. Documentation
    4. Appropriate technical and organisational measures, and ISO/IEC 27001
    5. Standards, schemes and trust seals
    6. Securing supplier relationships
  11. Chapter 5: Index of the Regulation
  12. Chapter 6: EU GDPR resources
  13. Further reading