Skip to content

About this course

Further to completion of GDPR 1, this course is designed to give health and social care workers a developed knowledge and understanding of the General Data Protection Regulation (GDPR), and their responsibilities relating to this.

It is suitable for managers and workers in health and social care organisations particularly if you are a manager, senior or are responsible for decisions about personal data collection in your organisation.

The course begins by reflecting on the learning from GDPR 1 by reminding learners what GDPR is, how it relates to the Data Protection Act 2018, details about the Regulator – Information Commissioners Office (ICO) and what is meant by ‘Personal Data’. Additional information regarding ICO data protection fees is also included within this module.

Module 2 shows how to prepare to process data and what initial steps are required. The course describes the 6 Lawful Bases necessary to process personal data and the additional conditions for special category data processing. The module asks learners to consider whether processing is necessary and the importance of demonstrating compliance by recording the outcome.

Module 3 explores Privacy Notices and Data Protection Impact Assessments; why they are necessary and what to include. We also ensure that any differences processing children’s data are identified and explained, providing a holistic package for all health and social care workers.

In the final stage of the course, you will learn about the roles and responsibilities necessary for health and social care workers and those in a data protection role. This includes information around Data Protection Officers, Data Controllers and Processors, contracts, record keeping and identifying / reporting data breaches.

Course duration: up to approx. 1 hour, dependent on learner’s skills and abilities.

Learning Outcomes

On completion of this course learners should know and understand the following:

  • Recognise Legislation and Regulation

  • Understand Personal Data and Special Category Data

  • Prepare to Process Personal Data

  • Lawful Bases and compliance

  • Process Personal Data

  • Privacy notices, DPIA and risks, Children

  • Comprehend and undertake (if appropriate) any relevant responsibilities

  • Data Protection Officer, Data Controllers and Data Processors

  • Records and Security

  • Data Breaches; reporting to ICO and individuals

Course Syllabus Includes

  • Data Protection Act 2018 and UK GDPR
  • Information Commissioners Office ICO
  • ICO Data Protection Fees
  • Personal Data and Special Category Data
  • GDPR 7 principles
  • Lawful Bases for Personal Data
  • Lawful Bases for Special Category Data
  • When data processing is necessary
  • Compliance
  • Privacy Notice Requirements
  • Data Protection Impact Assessments
  • Processing children’s data
  • Data Protection Officers
  • Data Controllers and Processors
  • Records and Record Security
  • Data Breaches and Reporting

Get the Training You Need to Make a Real Difference in People’s Lives

Are you looking to upskill your health and social care team? Or are you a care professional seeking to enhance your career prospects? With our wide range of accredited and cost-effective online courses, expert support, and outstanding customer service, we are here to help you achieve your goals. Contact us today to talk to our experts.

About this course

The aim of the course is to provide you with an introduction to Information Governance including the principles of confidentiality, data protection, subject access and freedom of information requests.

The course begins by defining the term Information Governance and introduces the framework of laws and standards. You will explore the Data Protection Act 2018, General Data Protection Regulations, the common law of confidentiality and the Freedom of Information Act 2000. You will also explore the difference between a Freedom of Information Request and Subject Access Request. You will also be introduced to the Caldicott principles.

In the second stage of learning, you will explore the meaning of a personal data breach and what you need to do if you should discover a breach. You will explore examples of good and poor practice in record keeping and the use of social media. The course concludes with a review of safe disposal of records and how to obtain further information and support to ensure you are familiar with your role and responsibilities for good Information Governance.

Learning Outcomes

On completion of this course learners should know and understand the following:

  • Know the meaning of; information governance, confidentiality, data protection, freedom of information and subject access request.

  • Know the rights individuals have in relation to data protection, freedom of information and subject access requests.

  • Know the Caldicott Principles.

  • Know the meaning of a personal data breach.

  • Know the action to take if you discover a personal data breach.

  • Know what constitutes good and poor practice in relation to data security including the use of social media.

  • Know how to obtain information and support.

Course Syllabus Includes

  • What is information governance?
  • The General Data Protection Regulations
  • The Data Protection Act 2018
  • The Freedom of Information Act
  • The Caldicott Principles
  • Caldicott Guardian
  • Data Protection Officer
  • Information Commissioner’s Office
  • Good and poor practice
  • Maintaining records
  • Passwords
  • Social media
  • How to obtain further information and support

Get the Training You Need to Make a Real Difference in People’s Lives

Are you looking to upskill your health and social care team? Or are you a care professional seeking to enhance your career prospects? With our wide range of accredited and cost-effective online courses, expert support, and outstanding customer service, we are here to help you achieve your goals. Contact us today to talk to our experts.