For businesses, professionals and employees
Start Investing in
GDPR Knowledge Today!
Increase your knowledge and skills about the GDPR with our courses and quizzes. We also sell course bundles, including templates for GDPR-related contracts and internal routines that companies need in order to comply with the regulation.
What is the GDPR?
The GDPR is an EU regulation that applies to all companies that process personal data within the EU/EEA area. Personal data are data that can be directly or indirectly linked to a living individual. Generally, the work with GDPR seems to be more the larger the company is. It is a comprehensive set of rules with a lot to keep in mind. Therefore, we have created this website to facilitate the work of companies. GDPR also applies to public bodies, but we have chosen to focus the information about GDPR on companies. An important part of GDPR is that companies must be able to demonstrate that they comply with the regulation by, among other things, having appropriate documents.
Who does GDPR apply to?
It is not only companies that have their registered office in the EU/EEA that the GDPR applies to. Companies that have their registered office outside the EU/EEA, but process personal data about persons within the EU/EEA area must also comply with the GDPR. The consequences for companies that violate the GDPR can be devastating. Therefore, it is important to know and follow them.
What we do
GDPRlearningHub.com
We have created this website to help companies with all their work around GDPR. The texts on the website are written by Carolina who is a lawyer and has worked with GDPR since it came into force in May 2018. Carolina runs a digital law firm in Sweden and writes agreements to companies, including GDPR-related agreements and documents.
GDPR Courses
Learn about the GDPR through our courses
Looking for a fun and fast way to gain necessary GDPR knowledge applicable for businesses and professionals? We provide courses on implementing the GDPR in practice, including GDPR templates, contracts and checklists. Ready? Let's get started! Our courses include:
- Video courses
- Quiz
- Yearly updates
- Guides
Important documents your company might need
Personal data processing agreement
If a controller engages a personal data processor, i.e. someone else to manage the processing, they must enter into a written data processing agreement (DPA) with each other.
Internal routines
It is important that the company draws up written internal procedures that employees must follow, for example for erasure of personal data and handling of personal data breaches.
Privacy Notice
Companies must inform data subjects about the processing, which is usually done in a privacy notice. This should include, among other things, the rights of data subjects.
Records of processing activities
If processing poses a high risk to the rights and freedoms of data subjects, the company needs to carry out an impact assessment, and possibly request a prior consultation.
GDPR Database
We are in the process of creating a database on GDPR with all the information on this website written by Carolina. Instead of using other AI tools, which are not trained for specific GDPR-related questions (which means significantly greater risk of errors), we create our own so that you can easily get answers to your questions. In addition to the texts from this website, which will become a book within a year, it will contain information from relevant official authorities, such as supervisory authorities from EU countries, the European Data Protection Board and others.
Take the first step toward increasing your GDPR knowledge and skills!
Why Choose Us
All our GDPR courses are instructed by experienced and qualified lawyers. They have at least a Master of Laws (LL.M; 330 ECTS; 5.5 years) and a minimum of 8 years of experience working in the field of personal data protection within the EU.
You can choose when you want to take the course and set your own learning pace. If you're a busy business owner or an employee, you can find an online program that works around your schedule and study when it suits you best.
All participants who pass the course will get a digital certificate. Since employers are required to ensure that their employees have the necessary knowledge about GDPR and personal data processing, the certificates can be used to prove it.
The Legal Bases for Personal Data Processing
All processing of personal data which belongs to individuals residing within the EU/EES-area, must be conducted in accordance with the EU General Data Protection Regulation (GDPR). According to the regulation, all processing must be based on one of the six legal bases.
The Data Protection Principles
There are seven important data protection principles stated in article 5 of the GDPR. If you learn about these principles, you will gain a better understanding of all the 99 articles that the GDPR consists of, since they all stem from these principles.
The Data Subjects Rights
It is important to know that the data subjects have certain rights in relation to their processed personal data. For example, the right to information and right to be forgotten. However, some of the rights might not alway be enforceable. But if possible, the data subjects rights should be respected.
Our posts about the GDPR
We write articles about personal data processing
Sharing is caring! We believe in providing information and spreading knowledge to help create a better understanding of applicable data protection regulations. You can read our articles that we post on this website, to learn more about the subject of personal data protection and EU:s general data protection regulation (GDPR).