Breach Management


This course is available by: Classroom & Virtual-LIVE


This course can be attended on an in-person basis at dedicated training venues (the yellow box below lists the upcoming dates and cities). There are ample opportunities to network with other delegates during coffee breaks and at the sit-down lunch.
Classroom Training Courses

Virtual-LIVE (WEBEX)

For those who prefer undertaking LIVE training remotely, PDP’s virtual courses allow delegates to interact directly with the trainer and to participate in group activities, mirroring the typical structure of Classroom sessions.
Virtual Training Courses












Breach Management


Course Overview

A personal data breach can have a significant impact on an organisation, including exposure to regulatory fines and claims for compensation. For most organisations, it is now a question of when a breach will occur rather than if. Organisations are legally required to notify a personal data breach to the relevant data protection authority unless the breach is unlikely to negatively impact individuals. Organisations are additionally obligated to inform affected individuals where the breach is likely to result in a high risk to those individuals.

This practical training session looks at the personal data breach obligations under the UK and EU GDPR in detail and the steps that organisations can take to prepare for and mitigate the risk of a breach. The course covers the following topics:

  • the types of incidents that trigger the requirement to notify
  • actions that organisations should be taking now in order to prepare for a possible security breach
  • incident response plans and opportunities to mitigate risk
  • implications for processors
  • what the ICO, and other relevant regulators, expect organisations to do
  • the requirement for an internal breach register and how to maintain it
  • consequences of failing to notify breaches

It is recommended that delegates attending this session have a basic knowledge of data protection legal requirements. Delegates with no existing knowledge may find it helpful to attend Data Protection Essential Knowledge Level 1 before attending this training course.

Course Trainer

Peter Given

Peter Given
EY Law

Trainer's biography
and other courses
by this Trainer

Upcoming Training Dates
Virtual LIVE (Webex)Tuesday, 12 March 2024
London (Classroom)Tuesday, 16 July 2024
Virtual LIVE (Webex)Friday, 01 November 2024

Classroom - £595.00 plus VAT


Virtual-LIVE (WEBEX) - £495.00 plus VAT

Training sessions run from 10.00am to 4.00pm

Discounts available:

10% discount for additional delegates for this course when booked together

Who should attend:
Data Protection Officers, Compliance Officers, Company Secretaries, Business Analysts, Information Managers, Legal Advisors, Database Managers, and others.



Practitioner Certificate in Data Protection (PC.dp.)


Practitioner Certificate in Freedom of Information (PC.foi.)




View training courses by:


Course Testimonials

“Excellent course. I found that working through a Breach case study and applying knowledge practically were particularly useful. Very happy with pace, content and structure of the course.”
George Squire

“The scenarios used along with the provided guidance templates were particularly useful.”
Rachel Davies

“The knowledge and practical experience of the trainer brought the subject to life and made for a richer learning experience.”
Kelly Durham
Valuation Office Agency (HMRC)

Sharon Wedgewood-Wailes
NHS Shares Business Services