GDPR Implementation and Compliance Workshop

Mercure Exeter Southgate

About this course

For those businesses who are still working towards becoming GDPR compliant this one-day workshop has been designed to give business owners and those involved in implementing GDPR a better understanding of the regulation and to help them to design their own plan to work towards compliance.

The workshop will include group work and practical activities that are applicable to your own business. The day will include the following sessions:

What is GDPR? – an overview of the regulation:

  • The regulation’s scope
  • Definitions
  • Individual’s rights
  • The six key Principles
  • Categories of personal data
  • Security
  • Data breach and notifications
  • Protection by design and default
  • Fines and right to compensation

Assessment of your business and gap analysis:

  • Importance of gap analysis to determine your current position
  • Undertake gap analysis exercise

Data mapping and flow:

  • Importance of data mapping
  • Begin a data map and flow and take away a template to complete in the workplace

Data Protection Impact Assessments:

  • What is a DPIA?
  • How to conduct a DPIA for your organisation
  • Exercise on undertaking a DPIA

Data Breach and Subject Access Requests:

  • What is defined as a breach?
  • Remedies and liabilities
  • Obligations and statutory requirements
  • Responding to subject access requests

Policies, Procedures and Notices:

  • Templates that can be utilised immediately back in your business

To include the following:

  • Privacy Notice
  • Privacy Policy

Further templates are available at a further cost.

This intensive one day workshop will enable you to begin your compliance journey with confidence, understanding and a clear plan. You will leave with an audit, a data mapping and flow template and privacy policies.

Sampson Hall Team:

Sampson Hall have four members of the organisation that are ISO 17024 accredited EU GDPR Practitioner and Data Protection Officers. This workshop will be run by Alasdair Cameron and Michael Stradling, they are both employed within the organisation and routinely deliver bespoke GDPR implementation strategies to SME’s and PLC organisations.

Alasdair Cameron:

Alasdair has significant cross sector experience working both in the UK and abroad. An experienced Board member and CEO, he understands risk and governance. He is highly commended and recognised for his imagination, flair, people skills and possesses a compelling drive for success. He was one of the key senior contingency leaders for the London Olympics, he now specialises in business governance and compliance. His experience includes the delivery of high-level and business critical issues in process, compliance and finance across a range of organisations and businesses.

Michael Stradling:

Michael has over 15 years experience within the recruitment and online advertising environment, predominantly the medical, social care and veterinary sectors. Having worked with a number of national and international clients, Michael has great experience in online processes and recruitment strategies and best practice. His eye for detail and comprehension of process alongside his infectious enthusiasm for helping to cultivate and develop organisations and individuals make him an extraordinary fit in Sampson Hall. Working on the difficult transformation that organisations have to make to become GDPR compliant as well as the other leadership and organisational development aspects of the Sampson Hall portfolio.

The practical examples the speakers used were great, the whole course was very informative and Sampson Hall helped me understand what GDPR means for my organisation. The exercises were also very good at demonstrating the complexity of where data is held, stored accessed and in helping understand the perspective from the data subject, legal entity & third parties”Caroline Helps, Sponge UK

Book Course


Mercure Exeter Southgate, EX1 1QF