Masterplan now available onAndroidiPhone

Data protection & Data privacy training for your employees

Create your company’s own GDPR-compliant online courses with a few clicks – with Masterplan.com

Compliant with Standards

Our mandatory training features meet all regulatory requirements e.g. non-skippable lessons, success-based knowledge check, time stamps.

Customized

Combine our video courses on data protection with your own in-house materials in just a few clicks.

Save time & money

Save time and money on face-to-face training, simply switch your data protection & DSGVO training to online.

case study welcome background data protection gdpr
case study welcome completed
case study welcome due date

Challenge

Many companies consider training on data protection and the GDPR an unpleasant, time-consuming, and cost-intensive task.

If mandatory training occurs in presence/on-site, HR managers have to organize rooms, training materials, seminar leaders, invitations, certificates, etc. On the part of the employees in the company, these data protection and DSGVO briefings are often only sat through reluctantly.

Solution

With Masterplan's software and our library of introductory courses, you can offer your data protection training digitally and in compliance with standards in no time. Show your colleagues that even dry mandatory topics can be fun and reduce the risk of being sentenced to high fines due to data protection violations by employees.

Continue reading for yourMasterplansolution.

Digitizing mandatory training

Hein & Oetting trusts Masterplan

Page Content

1.
Our Software: How to Build Your Online Privacy Training in 5 Steps with Masterplan

1. Select privacy training from Masterplan library

2. Upload your additional materials (e.g., PDF/presentation on use cases in your company)

3. Create your on quizzes

4. Assign data protection course to employees via e-mail and define a deadline

5. Measure learning success and see which employee has successfully completed the training and when

2.
Our introductory data protection courses

Data Protection in the Workplace

Never before has so much data been generated and analyzed – and the trend is rising. This makes it even more important to protect personal data. But how can I do that? What are the absolute taboos and what is indispensable when it comes to data protection?

case study presentation data protection gdpr 0

Lesson 1

What is data and what is data protection about?

Lesson 2

What is data protection and what are its tasks?

Lesson 3

How do I effectively protect data?

Lesson 4

Data Transfer and Backup

Lesson 5

Hacker Attacks

Lesson 6

Data Protection Rights

Lesson 7

Important definitions concerning Data Protection

GDPR in the Workplace

Every day you come into contact with data – you work with it and leave a lot of data on the Internet yourself. So, data also wants to be protected. But what is data protection? What rights and obligations do you have? You'll find out in this course!

case study presentation data protection gdpr 1

Lesson 1

GDPR at Work

Lesson 2

Role of the Data Protection Officer

Lesson 3

Driver's license for Data Processing

Lesson 4

Principles of Processing

Lesson 5

Data Subject Rights

Lesson 6

Data Protection in Everyday Work

GDPR - Use, Implementation and Common Misconceptions

Everyone's been talking about the General Data Protection Regulation since it was implemented in May 2018, presenting companies with large challenges. What exactly has changed in the realm of data security, and how can we fulfill the new rules?

case study presentation data protection gdpr 2

Lesson 1

What is the General Data Protection Regulation?

Lesson 2

What remains, what is new?

Lesson 3

What is affected by the GDPR?

Lesson 4

The Privacy Policy

Lesson 5

The Data Protection Officer

Lesson 6

Employment Data Protection for Employers

Lesson 7

Checklist and misconceptions regarding the GDPR

Data Protection in the Workplace

Never before has so much data been generated and analyzed – and the trend is rising. This makes it even more important to protect personal data. But how can I do that? What are the absolute taboos and what is indispensable when it comes to data protection?

case study presentation data protection gdpr 0

Lesson 1

What is data and what is data protection about?

Lesson 2

What is data protection and what are its tasks?

Lesson 3

How do I effectively protect data?

Lesson 4

Data Transfer and Backup

Lesson 5

Hacker Attacks

Lesson 6

Data Protection Rights

Lesson 7

Important definitions concerning Data Protection

Data Protection Courses You Love to Watch

Watch an example of our engaging data protection content:

3.
Advantages of online data protection training compared to classroom training

Classroom Training

Online Training with Masterplan

Organizing requires little time

No

Organization of invitations, training material, rooms, trainers and certificates often takes several working days

Yes

Few minutes to create a custom data protection training

Low financial costs

No

approx. 800€ per participant e.g. for an external one-day basic seminar on the GDPR

Yes

maximum 249€ per year per employee for all training topics from leadership training to sales, product, and mandatory training

High Flexibility

No

Place & time are fixed, number of employees is limited

Yes

Employees can do data protection training via tablet, smartphone, or PC as well as when and where they have time for it. There is no limit to the number of participants.

Learning success guaranteed

Medium

Questions can be posed to the seminar leader, knowledge testing is possible. However, a single long learning block is demonstrably less effective than repeated learning in small sense units (spaced repetition, chunking).

Yes

The user interface appeals to everyone.
Lessons are short and crisp at 2-10 minutes.
The questions on the lessons must be answered correctly.
The lessons can be repeated at any time.

High Employee Engagement

No

On-site seminars are often attended and sat through rather reluctantly. This is often because they are long, time inflexible, and take the form of frontal classroom delivery.

Yes

Masterplan is perceived as an employee benefit. This increases loyalty and identification with the company.

4.
What requirements must online data privacy training fulfill in order to be compliant with standards?

If mandatory training courses are offered online instead of by on-site seminar, special requirements must be met. Masterplan has developed the mandatory training feature for this purpose. If a data protection learning path is assigned to an employee as such:

1. Must be assigned a (custom) due date by which the course must be completed. Masterplan sends out timely reminder emails and also notifies the stored contact (the instructor) of the employee's progress.

2. Must prove knowledge level via quiz based on success. What is new is that a course is only considered successfully completed if a certain number of questions have been answered correctly.

3. The participant receives a certificate by e-mail as soon as he or she successfully passes the mandatory course. The instructor can download detailed reporting on all participants for whom she or he is responsible.

4. Each certificate has an individually defined validity period. Masterplan automatically informs the participant when the certificate expires and the next mandatory training is due.

5. Lessons in mandatory trainings can only be completed in the order specified by the instructor and cannot be skipped.

5.
Frequently Asked Questions

What is the difference between GDPR and data protection training in general?

Since 2018, the General Data Protection Regulation has applied to all member states of the European Union (EU GDPR). This means that any data protection training should be based on this law. In the national area, the BDSG (Federal Data Protection Act) also applies, which substantiates and specifies the provisions of the GDPR. While a DSGVO training mainly refers to the European regulations on personal data, a more comprehensive data protection training can also include the BDSG. For most employees, the basic information on the GDPR is sufficient - training for managers and data protection officers should go beyond this.

Is it mandatory to appoint and train a data protection officer even if data protection training with a master plan is already offered?

The data protection officer is regulated in Articles 35 f. of the General Data Protection Regulation, and Article 37 specifically states that a data protection officer is required if the core activity of the company consists of carrying out processing operations. These are companies that are active in the scoring or profiling area, for example. Market research or opinion polling companies, security companies, surveillance companies, but also social media providers, insurance companies,...so a whole lot of companies that fall under that. In addition, there is the requirement that the core activity of the company must also include extensive, regular and systematic monitoring of data subjects. So it's a matter of checking in detail: Do we have risky data processing operations in the company? If so, then we need a data protection officer.

How often do employees need to undergo data protection training?

It is not clearly regulated by law how often training on data protection and the GDPR must take place. However, experts recommend refreshing knowledge at least every 1-2 years. In certain industries and areas, however, requirements change regularly, so it makes sense to train at shorter intervals.

What content should a data protection or GDPR training cover?

Training on the GDPR is not about training employees to become data protection experts, but rather about raising awareness and creating a basis. Every employee should be able to answer questions such as "What is personal data?" and "Where do I have to deal with this in my daily work? Concrete contents can be: - What is data protection and what are your tasks? - What is the General Data Protection Regulation? - What is personal data? - How do I have to process personal data? - How do I protect myself against external threats? - What consumer rights do I have regarding my own data? - Who is the data protection officer and what does he do? How do I recognize a possible data breach in my company? - How and to whom do I report a possible data breach? In addition, the more individualized the better. With Masterplan's learning paths, the video courses that teach the basics can easily be combined with internal company information, e.g., with a statement from the data protection officer.

What are the possible consequences of not conducting data protection training?

Data protection training protects customers, employees and the company itself from unpleasant and costly data mishaps. Costly is to be taken literally here: Depending on the size of the company and the type of breach, fines of over 20 million euros can be incurred. In 2020, for example, Google and Amazon each collected fines of over 40 and 35 million euros respectively for failing to implement cookies correctly. Time and again, high fines are imposed because data protection mishaps, for example the loss of credit card information or customer data in general, are reported too late and appropriate countermeasures are taken too slowly, for example in the case of the company Ticketmaster UK. Data protection training is particularly important here, so that every employee can recognize a possible breach and report and escalate it as quickly as possible. Companies that train their employees and can prove that they have done so have the prospect of lighter sanctions in the event of a breach.

Is data protection training mandatory by law and if so, for which employees?

Yes and no. According to the GDPR, there is no explicit obligation to provide data protection training. This means that no fine or review is to be expected if no instruction takes place. However, an indirect obligation to provide training arises from the provisions of the GDPR: If there is a data protection incident, the company can be held responsible due to a lack of education. This is because it is subject to a general obligation to provide evidence of compliance with data protection law in accordance with Article 5 (2) of the GDPR. In simple terms, this means that employers are obligated to prove that they have provided their employees with the necessary tools to avoid data mishaps and to handle data in a legally compliant manner.

Discover more Mandatory Training use cases on Masterplan

Occupational Safety

Make health and safety a top priority.

Compliance

Turning rules into values.

case study presentation compliance 0
case study presentation compliance 1
case study presentation compliance 2
CertifiedInformation Security
ISO/IEC 27001
TISAX®
Learn everywhere
Download our App & discover mobile learningexperience. Available on iOS and Android.
© Masterplan com GmbH 2024