Recent developments in GDPR for the FE sector

Since the introduction of GDPR in May 2018, the way in which personal data should be handled has significantly changed. Although much has been done many colleges are still trying to get to grips with this new legislation and how it should be applied.

Whilst they are struggling to get to grips with the requirements of GDPR many are unaware of the exemptions to it made in the Data Protection Act 2018. With Internal Audits beginning to ask searching questions as to how data is managed and seeking assurances that this is in accordance with the new legislation colleges need to remain compliant with the requirements of GDPR.

This workshop will provide you with the both foundational knowledge and current best practice necessary for your college to avoid costly errors and stay safe in what can be a data minefield, whilst also learning what has happened since GDPR itself came into force.

By the end of the day you will:

  • Have reviewed the key principles and definitions of GDPR including Data Controller, Data Processor and Data Subject.
  • Understand the six legal basis’s for the processing of personal data and how these can be applied
  • Understand the lawful basis under which data can be processed and how to deal with Special Category data.
  • Consider the rights of the Data Subject and how these affect data processing (from informal contact, receiving an application through to a student (or member of staff) leaving and beyond.
  • Understand when to undertake a Data Protection Impact Assessment and what should be considered.
  • Discuss how to manage a Data Breach and what the requirements for Breach Notification are.
  • Know what must be included in a Privacy Notice. (Attendees are encouraged to bring a copy of a Privacy Notice used in their own organisation to the meeting).
  • Understand the role of a Data Protection Officer, who it can be and if they are required at all.
  • What constitutes a valid Subject Access Request and what to do and by when, if you receive one.
  • How can an individual make a complaint about the use of their data, how to respond and best practice in the event of it being reported to the ICO.


Who should attend?

This course is ideal for any member of college staff who has to handle personal data as part of their role and requires an overall understanding of how GDPR has affected the way in which they now need to deal with data.

Share this page

Key information

Date:30 Jan 2020

IET Birmingham: Austin Court
80 Cambridge Street
B1 2NP


AoC Member: £299.00 + VAT

Non-Member (college/public sector): £400 + VAT


Please call Conference Care on 02476 369720 and let them know you are attending an AoC workshop.


Registration, programme & general enquiries: or call us on 020 7034 2640

Finance enquiries: or call us on 020 7034 9900