Employee training on the General Data Protection Regulation (GDPR)
According to the GDPR, every entity that processes personal data must take organizational measures to ensure data protection. This includes training all persons who process personal data on data protection rules. Not only does data protection training help prevent breaches of data protection law, it also becomes important in the event that the data controller has to defend itself against fines and damages claims.
Since the GDPR entered into force on 25 May 2018, companies face potential fines of up to EUR 20,000,000 or up to 4% of the total worldwide annual turnover of the preceding financial year for each individual case (Article 83(6) GDPR).
Since 25 May 2018, a defense against damages claims requires the data controller to prove that they are not in any way responsible for the event giving rise to the damage (Article 82(3) GDPR). Any employer who fails to train its employees on data protection law, is likely to be at least jointly responsible for their data protection violations. In that case, a defense against damages claims would typically be impossible.
Since 2006, DSGVO-Wissen.de affords every company – regardless of size – the opportunity to train all employees in accordance with the AGG via e-learning in a flexible manner and within a short time, including the provision of a certificate, for a fixed price and predetermined time at their workplace.
For further information (in German), please refer to www.dsgvo-wissen.de
DSGVO-Wissen.de is a joint project of:
brainosphere 1 GmbH and Esche Schümann Commichau