Data protection impact assessments (DPIA) are a mandatory requirement, under the Data Protection Act 2018 and GDPR, for all organisations who process and possess large amounts of personal data.

This highly practical and interactive Effective Data Protection Impact Assessments training course provides your organisation with the necessary skills to carry out DPIAs, to comply with the latest data protection legislation and your users’ expectations. Run this highly practical training to answer your users’ concerns and implement efficient data protection processes in your public sector organisation.

Through practical and interactive workshop sessions, understand the role of DPIAs in ensuring compliance with the latest data protection legislation and learn how to effectively use DPIA in your organisation.

By booking this Creating Data Protection Impact Assessments course In-House, your team will gain the skills to embed a privacy by design approach and leave the day with methods to reduce or eliminate privacy risks to your organisation.

Learning Outcomes

  • Comply with the latest data protection legislation by carrying out DPIAs
  • Learn how to embed a privacy by design approach across your organisation
  • Identify, assess and mitigate privacy risks within all your data processing activities
  • Enhance the integrity and security of your data
  • Identify and evaluate privacy solutions
All the Understanding ModernGov courses are Continuing Professional Development (CPD) certified, with signed certificates available upon request for event.

Enquire About In-House Training

To speak to someone about a bespoke training programme, please contact us:
0800 542 9414
[email protected]


Collapse all
09:15 - 09:45


09:45 - 10:00

Trainer’s Welcome and Clarification of Learning Objectives

10:00 - 11:00

Data Protection Impact Assessments and Data Protection Legislation

  • Understand the role of DPIAs in ensuring compliance with GDPR
  • How DPIAs can help you to develop more effective information governance strategies
  • Case studies of effective use of DPIAs
  • Ensure effective compliance with the GDPR
11:00 - 12:00

Identifying the Need for a DPIA

  • Learn how to answer screening questions to identify a proposal’s potential impact on privacy
  • Understand how project management activity can address privacy issues
  • Discuss privacy issues with key stakeholders
12:00 - 13:00

Describing Information Flows

  • Gain the confidence to explain how the information will be obtained, used and retained
  • Engender an appreciation and awareness of DPIA within your organisation
  • Consult colleagues on the practical implications of using data
  • Identify potential future uses of information
13:00 - 14:00


14:00 - 14:45

Privacy and Related Risks

  • Record the risks to individuals, including possible intrusions on privacy where appropriate
  • Assess the corporate risks including regulatory action, reputational damage and loss of public trust
  • Conduct a compliance check against the GDPR and other relevant legislation
  • Maintain a record of the identified risks
14:45 - 15:00

Afternoon Break

15:00 - 16:00

Identifying and Evaluating Privacy Solutions

  • Develop methods to reduce or eliminate privacy risks
  • Assess the costs and benefits of each approach, looking at the impact on privacy and the effect on the project outcomes
  • Refer back to the privacy risk register until satisfied with the overall privacy impact
16:00 - 16:15

Feedback, Evaluation & Close