GDPR: The European Regulation for the Protection of Personal Data 2016/679



Typology: Online Course
Duration: 2 ½ hours



The course analyzes the GDPR, General Data Protection Regulation EU 2016/679, the European Regulation on the processing of personal data, providing a structured overview of the legal requirements and implications for organizations.

Update October 2023.

The course aims to:

  • outline the purposes and principles of the new legislation;
  • identify actors, requirements and timelines for adapting to the new provisions;
  • specify the penalties envisaged.

The course is also valid for the legal area of ​​training and updating IVASS (12. Legislation on the protection of personal data), for the Update CONSOB (ESMA criteria point V.III: Letter C) and for OAM training (The rules on the protection of personal data).



Il GDPR online course it is aimed at all staff of public and private companies involved in data processing. In particular, it is recommended for:

- Data Protection Officers

- Data Controllers / Data Processors

- IT or Information Management Systems Managers

- Internal Auditors, Risk Managers and Consultants

- Human Resources Managers and Personnel Managers

- Personnel Administration Managers and Employees

- Compliance Managers

- Heads of the Legal Department

Principles of accessibility: WCAG latest version currently available for level AA – the Web Content Accessibility Guidelines are the main guidelines established by the World Wide Web Consortium (W3C) to make web contents more accessible also to people with disabilities – and guarantee the use of contents also to all people with disabilities who use assistive technologies or specific IT configurations, in accordance with: AGID Determination n.117 of 26 April 2022 concerning "Guidelines on the accessibility of IT tools for the providers referred to in the art. 3 paragraph 1-bis of Law no. 4/2004.”



1. Principles, rights and actors of privacy
- Introduction to privacy
- The rights of the interested party
- The owner and manager of the treatment
- Data protection officer and codes of conduct

2. Security measures and penalties
- Personal data security and impact assessment
– Cross-border transfers
- The control authorities
- The European Data Protection Board
- Remedies, liability and sanctions



The course uses the technique of Storytelling to build a captivating and ironic scenario in which to set the treated contents, anchoring them to concrete cases.

During the lessons, moments of interaction avoid loss of attention and actively involve in the training experience.

Ah hoc pills summarize the main innovations by focusing on video to facilitate memorization.



Review and update of the contents by: PhD lawyer Tiziana Pica