RODO, or Data Protection Regulation is a set of fairly recently established regulations designed to protect us as citizens from the unwanted dissemination of our confidential data, for example:

  • name,
  • PESEL,
  • residential address,
  • e-mail address,
  • contact number,
  • parents' names

It was passed by the European Union and is intended to protect all individuals in the context of the processing of personal data and to regulate its free movement on the basis of relevant legislation. The RODO was introduced to harmonise European law and is intended to give Europeans themselves more control over their personal data. In addition, it helps companies reduce bureaucracy, which increases trust from customers. RODO came into force 27 April 2016 for a so-called transitional period, which lasted until 25 May 2018. It has since been in force in all EU countries, replacing Directive 95/46/EC. The RODO introduces, among other things:

Cabinet at the Data Protection Authority

  • better and easier use of personal data
  • the right to erasure, to be "forgotten",
  • more efficient data transfer between providers of different services,
  • The right to be notified of a hacking attack on our data,
  • pseudonymisation and encryption of data

As calculated, standardising the law in this way and making it uniform throughout the European Union is expected to help save 2.3 billion euro per year. In the report European Commission of 2020, the new RODO provisions have been assessed positively. According to the RODO, there is seven guiding principles processing of personal data, and these are:

  • the principles of fairness, legality and transparency,
  • the principle of purpose limitation,
  • data minimisation principle,
  • regularity principle,
  • storage restriction principle,
  • principle of integrity and confidentiality,
  • principle of accountability

RODO training - is it worth it?

Despite the existence of the RODO for several years now, many companies still have problems in correctly interpreting and complying with all the regulations contained therein. So what should we do if our staff or ourselves are clearly lacking in knowledge of this regulation? There are various companies offering courses on RODO and all the related issues. These can be held both in-house and online. The question of whether it is worthwhile at all to take part in such courses needs to be answered in terms of the benefits of completing such a course. These include, for example:

  • free legal support,
  • various RODO certifications,
  • access to a range of training materials,
  • model documents on RODO,
  • acquiring useful practical skills and the necessary theoretical knowledge,
  • company-specific guidance and guidelines on the subject of personal data,
  • learning from experienced and recognised experts dealing with legal data protection issues,

Lecture hall with training in progress

Usually, companies organising this type of training take great care to ensure that the trainer is as reliable as possible and conveys the knowledge they have in an accessible and interesting manner. Their openness and willingness to dispel any doubts on the RODO issue is also a feature desired by training participants. In case of questions, participants should count on precise and comprehensive explanations, as the subject of RODO still raises many doubts by its complexity. In this case, attending a professionally conducted training course under the guidance of competent lecturers seems to be a hit. RODO training courses usually consist of a number of different thematic blocks, the understanding and practice of which is necessary in order to be able to navigate this topic freely in the future. The theoretical elements according to which the training usually takes place are:

  • the source of all rights (familiarisation with the various laws, instruction on how to read RODO, sensitisation on changing legislation, etc.),
  • RODO in the context of human resources (Labour Code, recruitment or data processing issues),
  • Presentation of key concepts and information on RODO,
  • responsibilities in the circulation and processing of personal data,
  • issues whose fulfilment guarantees the lawful processing of personal data (required consents, procedures, etc.),
  • established rules on the processing of personal data,
  • The most important rights of persons covered by the RODO,
  • responsibility of data processing,
  • personal data breach situations,
  • drawing up appropriate documentation,
  • familiarisation with the silhouette Data Protection Officer

Completion of the aforementioned course usually results in a specially prepared certificate confirming the acquired competences and carefully prepared RODO documentation, which includes, among other things, various templates of relevant documents. The prices of such training vary and depend on the city in which it is organised, the duration or the issues covered. It is therefore advisable to read through the many offers before making a final choice about attending a training course. Usually such trainings are organised in the largest Polish cities, and it is there that we should look for interesting offers. Such cities include:

  • Warsaw,
  • Kraków,
  • Katowice,
  • Wrocław
  • Gdansk,
  • Poznan

In addition to data protection training, there is also individual training on Data Protection Officer. Such a person must be designated within the company concerned. He or she is the liaison between the administration of the corporation and the relevant office. It is therefore worthwhile, once a particular person has been identified for this position, to send him or her on a properly prepared course. There he or she will learn:

  • What the work of the Inspector is like,
  • what rights and obligations it has,
  • what to do in dangerous and risky situations (sudden data loss or theft)

Such training can take up to several days due to the high level of responsibility in this position. Participants can expect all unclear issues to be clarified and all their questions to be answered. In addition, they are provided with study aids or useful materials. Law graduates often enrol on such a course, for whom it is a great addition to their existing knowledge. In this case, they also receive an appropriate certificate of competence. RODO and Data Protection Officer training is a very useful option for entrepreneurs, CEOs and their employees in today's rapidly changing world. It is really worth investing in gaining knowledge of personal data processing and protection.