Udemy
    •  
    •  
    •  
    •  
    •  
    •  
    •  
    •  
Turn what you know into an opportunity and reach millions around the world.
Learn More
Your cart is empty.
Keep shopping
GDPR - The Simplified Version
Rating: 4.4 out of 5(211 ratings)
1,154 students

GDPR - The Simplified Version

GDPR - The Simplified Version
Created byHemang Doshi
Last updated 5/2026
English

What you'll learn

  • Learners should be able to articulate the key principles of GDPR, including lawful processing, transparency, and accountability.
  • Understand the rights of data subjects and the corresponding responsibilities of data controllers and processors under GDPR.
  • Develop the ability to assess and mitigate risks related to personal data processing, ensuring compliance with GDPR.
  • Comprehend the legal aspects of GDPR, including potential legal consequences for non-compliance.
  • Know how to respond to data breaches and incidents in accordance with GDPR requirements.
  • Develop communication skills to educate internal stakeholders, customers, and partners about GDPR compliance.

Course content

1 section126 lectures7h 2m total length
  • GDPR - Introduction2:19
  • Article 1 - Subject-matter and objectives8:14

    Discuss article one’s subject matter and objectives of the GDPR, including protection of natural persons’ data, fundamental rights, and the free movement of data within the European Union.

  • Legal Text - Article 1 - Subject-matter and objectives0:22
  • Article 1 - Flashcards0:02
  • Article 1 - Practice Questions
  • Article 2 - Material scope6:53
  • Legal Text - Article 2 - Material scope0:58
  • Article 2 - Flashcards0:02
  • Article 2 - Practice Questions
  • Article 3 - Territorial scope13:01

    Understand GDPR's territorial scope, article 3: it applies when an organization has EU establishment, offers goods or services to EU residents, monitors EU users, or falls under member state law.

  • Legal Text -Article 3 - Territorial scope0:41
  • Article 3 - Flashcards0:02
  • Article 3 - Practice Questions
  • Article 4 - Definitions7:37
  • Legal Text -Article 4 - Definitions5:38
  • Article 4 - Flashcards0:02
  • Article 4 - Practice Questions
  • Abbreviation - 7 principles of GDPR1:50

    Remember seven principles of GDPR by the abbreviation lamy, focusing on lawfulness fairness and transparency, purpose limitation, storage limitation, accuracy, accountability, minimization, and integrity and confidentiality.

  • Article 5 - Principles relating to processing of personal data7:58

    Learn article five of GDPR and the seven principles for processing personal data, including lawfulness, fairness, and transparency, data minimization, accuracy, storage limitation, data integrity and confidentiality, and accountability.

  • Legal Text - Article 5 - Principles relating to processing of personal data1:28
  • Article 5 - Flashcards0:02
  • Article 5 - Practice Questions
  • Article 7 - Conditions for consent10:07

    outline article seven of the gdpr, detailing four subclauses: demonstrate consent, clear and plain language, right to withdraw, and no coercion, with withdrawal as easy as consent.

  • Legal Text - Article 7 - Conditions for consent0:51
  • Article 7 – Flashcards0:02
  • Article 7 - Practice Questions
  • Article 8 - Conditions applicable to child's consent in relation to information5:52
  • Legal Text - Article 8 - Conditions applicable to child's consent0:47
  • Article 8 – Flashcards0:02
  • Article 8 - Practice Questions
  • Article 9 - Processing of special categories of personal data6:52
  • Legal Text - Article 9 - Processing of special categories of personal data3:01
  • Article 9 – Flashcards0:02
  • Article 9 - Practice Questions
  • Article 10 - Processing of personal data relating to criminal convictions and of3:19
  • Legal Text - Article 10 - Processing of personal data relating to criminal0:20
  • Article 10 – Flashcards0:02
  • Article 10 - Practice Questions
  • Article 11 - Processing which does not require identification2:24

    Explore how Article 11 allows processing personal data without identifying the subject, where the purpose determines identification; learn when additional information triggers normal GDPR rules.

  • Legal Text - Article 11 - Processing which does not require identification0:34
  • Article 11 – Flashcards0:02
  • Article 11 - Practice Questions
  • Article 12 -Transparent information, communication and modalities8:30
  • Legal Text - Article 12 -Transparent information, communication and modalities2:26
  • Article 12 – Flashcards0:02
  • Article 12 - Practice Tests
  • Article 13 - Data collected from Data Subject11:11
  • Legal Text - Article 13 - Data collected from Data Subject2:16
  • Article 13 – Flashcards0:02
  • Article 13 - Practice Questions
  • Article 14 - Data not collected from Data Subject12:14
  • Article 14 - Legal Text - Data collected from Data Subject3:10
  • Article 14 – Flashcards0:02
  • Article 14 - Practice Questions
  • Article 15 - Right of access by the data subject8:06
  • Legal Text - Article 15 - Right of access by the data subject1:26
  • Article 15 – Flashcards0:02
  • Article 15 - Practice Questions
  • Article 16 - Right to rectification2:52

    Explain article 16 rights: data subjects can rectify inaccurate data or complete missing records, with the controller fixing data promptly and considering processing purposes.

  • Legal Text - Article 16 - Right to rectification0:14
  • Article 16 – Flashcards0:02
  • Article 16 - Practice Questions
  • Article 17 - Right to erasure (‘right to be forgotten’)8:34

    Explain Article 17’s right to erasure, including when deletion is required, comprehensive deletion, exceptions, and informing other recipients of the erasure request.

  • Legal Text - Article 17 - Right to erasure (‘right to be forgotten’)1:51
  • Article 17 – Flashcards0:02
  • Article 17 - Practice Questions
  • Article 18 - Right to restriction of processing7:22
  • Legal Text - Article 18 - Right to restriction of processing1:00
  • Article 18 – Flashcards0:02
  • Article 18 - Practice Questions
  • Article 19 - Notification obligation regarding rectification or erasure4:10
  • Legal Text - Article 19 - Notification obligation regarding rectification0:19
  • Article 19 – Flashcards0:02
  • Article 19 - Practice Questions
  • Article 20 - Right to data portability7:34
  • Legal Text - Article 20 - Right to data portability0:53
  • Article 20 – Flashcards0:02
  • Article 20 - Practice Questions
  • Article 21 - Right to object11:24
  • Legal Text - Article 21 -Right to object1:19
  • Article 21 – Flashcards0:02
  • Article 21 - Practice Questions
  • Article 22 - Automated individual decision-making, including profiling7:07
  • Legal Text - Article 22 - Automated individual decision-making0:55
  • Article 22 – Flashcards0:02
  • Article 22 - Practice Questions
  • Article 23 - Restrictions4:23
  • Legal Text - Article 23 - Restrictions1:35
  • Article 23 – Flashcards0:02
  • Article 23 - Practice Questions
  • Article 24 - Responsibility of the controller7:51
  • Legal Text - Article 24 - Responsibility of the controller0:34
  • Article 24 – Flashcards0:02
  • Article 24 - Practice Questions
  • Article 25 - Data protection by design and by default9:24

    Explore data protection by design and by default under article 25, applying state-of-the-art measures, understanding the nature, scope, context, and purposes of processing, and using pseudonymisation and data minimization.

  • Legal Text - Article 25 -Data protection by design and by default0:58
  • Article 25 – Flashcards0:02
  • Article 25 - Practice Questions
  • Article 26 - Joint controllers5:43
  • Legal Text - Article 26 -Joint controllers0:45
  • Article 26 – Flashcards0:02
  • Article 26 - Practice Questions
  • Article 28 - Processor14:12
  • Legal Text - Article 28 - Processor3:42
  • Article 28 – Flashcards0:02
  • Article 28 - Practice Questions
  • Article 29 - Processing under the authority of the controller or processor2:22
  • Legal Text - Article 29 - Processing under the authority of the controller0:13
  • Article 29 – Flashcards0:02
  • Article 29 - Practice Questions
  • Article 30 - Records of processing activities12:50
  • Legal Text - Article 30 - Records of processing activities1:53
  • Article 30 – Flashcards0:02
  • Article 30 - Practice Questions
  • Article 32 - Security of processing10:58
  • Legal Text - Article 32 - Security of processing1:12
  • Article 32 – Flashcards0:02
  • Article 32 - Practice Questions
  • Article 33 - Notification of a personal data breach to the supervisory authority11:53
  • Legal Text -Article 33 - Notification of a personal data breach to the SA1:12
  • Article 33 – Flashcards0:02
  • Article 33 - Practice Questions
  • Article 34 - Communication of a personal data breach to the data subject9:42
  • Legal Text -Article 34 -Communication of a personal data breach to Data Subject1:11
  • Article 34 – Flashcards0:02
  • Article 34 - Practice Questions
  • Article 35 Data protection impact assessment18:35

    explains article 35 data protection impact assessment requirements, including when to conduct DPIAs, the role of the data protection officer, mandatory processing scenarios, and DPIA content.

  • Legal Text -Article 35 - Data protection impact assessment2:59
  • Article 35 – Flashcards0:02
  • Article 35 - Practice Questions
  • Article 36 - Prior consultation9:49
  • Legal Text - Article 36 - Prior consultation1:37
  • Article 36 – Flashcards0:02
  • Article 36 - Practice Questions
  • Article 37 - Designation of the data protection officer13:20
  • Legal Text - Article 37 -Designation of the data protection officer1:21
  • Article 37 – Flashcards0:02
  • Article 37 - Practice Questions
  • Article 38 - Position of the data protection officer11:28
  • Legal Text - Article 38 - Position of the data protection officer0:58
  • Article 38 – Flashcards0:02
  • Article 38 - Practice Questions
  • Article 39 - Tasks of the Data Protection Officer5:56

    outline article 39 tasks for the data protection officer, including informing and advising controllers and processors, monitoring compliance, staff training and audits, cooperating with authorities, and considering processing risks.

  • Legal Text - Article 39 - Tasks of the Data Protection Officer0:51
  • Article 39 – Flashcards0:02
  • Article 39 - Practice Questions
  • Legal Text - Article 40 - Code of Conduct3:18
  • Legal Text - Article 42 - Certification1:51
  • Article 44 - General principle for transfers5:56

    Explore the data protection officer’s GDPR responsibilities under article 39, including informing and advising controllers or processors, monitoring compliance, audits, and cooperation with supervisory authority. Assess risk under article 39.2.

  • Legal Text - Article 44 - General principle for transfers0:27
  • Article 44 – Flashcards0:02
  • Article 44 - Practice Questions
  • Article 45 - Transfers on the basis of an adequacy decision2:54
  • Legal Text - Article 45 - Transfers on the basis of an adequacy decision3:13
  • Article 45 - Practice Questions
  • Article 46 - Transfers subject to appropriate safeguards4:42
  • Legal Text - Article 46 - Transfers subject to appropriate safeguards1:37
  • Article 82 - Right to compensation and liability11:22
  • Legal Text - Article 82 - Right to compensation and liability1:11
  • Article 82 – Flashcards0:02
  • Article 82 - Practice Questions
  • Article 83 - General Conditions for imposing Administrative Fines14:30

    Under article 83, the supervisory authority decides if and how much to fine, weighing nature, gravity, duration, data subjects affected, damage, intent, mitigation, cooperation, and prior infringements.

  • Legal Text - Article 83 - General Conditions for imposing Administrative Fines3:38
  • Article 83 – Flashcards0:02
  • Article 83 - Practice Questions
  • Bonus Lecture1:02

Requirements

  • No prior experience is required to learn the GDPR.

Description


Welcome to "GDPR - The Simplified Version" Course!

Unlock the mysteries of GDPR without drowning in legalese! Our course breaks down the General Data Protection Regulation into digestible, practical insights. No need for a law degree—just an eagerness to understand and implement data protection.


Course Highlights:


  1. Simplified Learning: We've distilled GDPR into plain language, focusing on what you need to know without overwhelming you with jargon.

  2. Practical Examples: Learn through real-life scenarios. We believe in hands-on learning—understand the regulation by applying it to practical situations.

  3. MCQ based learning: We have designed MCQs for each lecture to enhance your learning experience.


GDPR - The Simplified Version" Course includes following most important articles of the GDPR: 


  1. Article 1: "Subject Matter and Objectives"

  2. Article 2: "Material Scope"

  3. Article 3: "Territorial Scope"

  4. Article 5: "Principles relating to processing of personal data"

  5. Article 7: "Conditions for consent"

  6. Article 8: "Conditions applicable to child's consent in relation to information society services"

  7. Article 9: "Processing of special categories of personal data"

  8. Article 10: "Processing of personal data relating to criminal convictions and offences"

  9. Article 11: "Processing which does not require identification"

  10. Article 13: "Information to be provided where personal data are collected from the data subject"

  11. Article 14: "Information to be provided where personal data have not been obtained from the data subject"

  12. Article 15: "Right of access by the data subject"

  13. Article 16: "Right to rectification"

  14. Article 17: "Right to erasure ('right to be forgotten')"

  15. Article 18: "Right to restriction of processing"

  16. Article 19: "Notification obligation regarding rectification or erasure of personal data or restriction of processing"

  17. Article 20: "Right to data portability"

  18. Article 21: "Right to object"

  19. Article 22: "Automated individual decision-making, including profiling"

  20. Article 23: "Restrictions"

  21. Article 24: "Responsibility of the controller"

  22. Article 25: "Data protection by design and by default"

  23. Article 26: "Joint controllers"

  24. Article 28: "Processor"

  25. Article 29: "Processing under the authority of the controller or processor"

  26. Article 30: "Records of processing activities"

  27. Article 32: "Security of processing"

  28. Article 33: "Notification of a personal data breach to the supervisory authority"

  29. Article 34: "Communication of a personal data breach to the data subject"

  30. Article 35: "Data protection impact assessment"

  31. Article 36: "Prior consultation"

  32. Article 37: "Designation of the data protection officer"

  33. Article 38: "Position of the data protection officer"

  34. Article 39: "Tasks of the data protection officer"

  35. Article 44: "General principle for transfers"

  36. Article 82: "Right to compensation and liability"

  37. Article 83: "General conditions for imposing administrative fines"



Who this course is for:

  • Data Protection Officers (DPOs)
  • Compliance Officers
  • Information Security Officers
  • Information System Auditors
  • Data Processors and Controllers
  • Anyone Handling Personal Data