Who should attend?
This event is designed for professionals responsible for data protection, compliance, and organisational risk management.
- Data Protection Officers (DPOs), in-house and outsourced
- Privacy Professionals responsible for data protection and AI compliance
- Legal professionals advising on GDPR, AI, and regulatory risk
- Compliance & risk professionals
- Senior management responsible for governance
- Consultants supporting client compliance
This CPD event is built from real Data Protection Officer advisory work and regulatory response experience, ensuring that the content reflects practical, real-world challenges rather than academic theory. It integrates GDPR and AI compliance in a cohesive way, recognising how these areas intersect in practice, and is specifically designed to support informed, effective decision-making within organisations.
The programme is structured into seven focused sessions, each designed to address a key area of regulatory and operational compliance.
What you’ll cover in this full-day CPD programme.
Hour 1 - Global Privacy Law Updates
- Key EU and international regulatory developments shaping data protection in 2026
- Enforcement trends and supervisory authority priorities
- Practical implications for organisations operating across multiple jurisdictions
EDPB Annual Report for 2025
DPC and EDPB Annual Reports for 2024
Hour 2 - Cross-Border Transfers
- Application of SCCs and Transfer Impact Assessments (TIAs) in practice
- Identifying and managing high-risk jurisdictions
- Operationalising compliant international data transfer frameworks
Transfer Impact Assessments in Practice
Cross-Border Transfers for DPOs
Hour 3 - Privacy Programme Metrics
- Defining meaningful KPIs for GDPR accountability
- Measuring and evidencing compliance at organisational level
- Reporting privacy performance to senior stakeholders and boards
From Privacy Metrics to Audit Resilience
Who Owns Privacy Accountability?
Hour 4 - Vendor Management Oversight
- Managing processors and sub-processors within complex supply chains
- Addressing AI-related vendor risks and due diligence requirements
- Strengthening contractual and operational oversight mechanisms
Vendor Oversight and Legal Characterisation
Defensible Vendor Privacy Lifecycles
Hour 5 - DPIAs in Practice
- Identifying when DPIAs are required in real-world scenarios
- Structuring effective and defensible assessments
- Integrating AI and emerging technology risks into DPIA processes
When “Low”, “Limited”, or “Minimal” Risk AI Still Needs Explaining
Why AI DPIAs Become Harder Than They First Appear
Hour 6 - Children’s Data & Online Services
- Regulatory expectations for processing children’s data
- Age-appropriate design and safeguards in digital services
- Managing risk in EdTech and online platforms
Hour 7 - Data Breach Response
- Designing and implementing effective incident response frameworks
- Assessing notification thresholds and regulatory obligations
- Applying structured decision-making in real-world breach scenarios
How the event works
The programme is delivered as a structured, full-day CPD event, divided into seven focused sessions. Each session is designed to provide practical, real-world insight that can be applied immediately within your organisation. Access is available on-demand, allowing you to complete the training at your own pace. This format is designed to support busy professionals balancing compliance, legal, and operational responsibilities.
Purchase Access
Instant Course Access
Learn Anytime, Anywhere
Get Full CPD Access Today
Access the complete CPD programme and gain practical, real-world insight across key areas of data protection, AI, and regulatory compliance.
Your access is available immediately after purchase, allowing you to begin the training at your convenience.
- 7 CPD hours awarded
- Instant access to all sessions
- Accessible via desktop and mobile (Moodle platform)
- Certificate provided upon completion
