GDPR - The Basics -
GDPR - The Basics -
The fundamentals of the GDPR
5 hours - 100% e-learning - 12 months of access to the platform - €550 (including tax)
The GDPR Fundamentals training course (5 hours) aims to enable all professionals (employees, collaborators, self-employed entrepreneurs, business owners, etc.) who are faced with the issue of personal data protection within their organization to acquire the fundamental knowledge and skills in this area, so that they can integrate this requirement into the design of their organizations from the outset.
Duration
5 hours
Difficulty level
🥚Beginner
🐣Beginner
🐥Intermediate
🐤Advanced
🐓 Expert
Would you like us to deliver this training in a synchronous format (online, in-person, or hybrid)?
Would you like a training program that is customized in terms of content or format?
Your instructor
Alexis Deroudille holds a doctorate in law, is a graduate of Sciences Po Paris, a member of the Paris Bar, and a certified DPO (IAPP) in accordance with the standards established by the CNIL. He has worked as a Data Protection Officer for many years, serving a diverse client base (including major tech companies, startups, associations, and small and medium-sized businesses), and also has extensive experience in teaching. Finally, he is the author of numerous in-depth articles on personal data protection law.
The educational objectives of the training program
Understand the basic concepts of personal data protection: data, personal data, processing, database
Identify the parties involved: data controller, data processor, third party, recipient
Understand the fundamental principles of personal data protection: lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, and the obligations of integrity and confidentiality
Understanding and implementing the requirement for accountability among stakeholders
Identify a processing operation involving personal data
Map data processing activities and stakeholders in order to be able to implement a compliance program
Understand the concepts of “privacy by design” and “privacy by default”
The target audience
This training is designed for all professionals—employees, executives, independent practitioners, and self-employed individuals—who must navigate the regulatory and technical requirements associated with personal data protection. It aims to provide participants with the fundamental knowledge and skills in this field, specifically to enable them to initiate a compliance program within their organization and to improve the technical integration of these requirements (particularly through mastery of “Privacy by Design” and “Privacy by Default” practices).
Terms and conditions and timeframes for access
Immediately after completing their online registration by paying the registration fee, learners gain immediate access to the e-learning platform. Access to the platform is granted for a period of twelve (12) months of 30 days each, totaling 360 days. This period begins on the date the learner’s access to the LégiSchool e-learning platform is created.
Prerequisites
This course does not require any specific prior knowledge, but is open only to qualified candidates with at least two years of professional experience (such as a bachelor’s or master’s degree in law or computer science, or significant experience in these fields). If you have any questions about the prerequisites, please contact our academic advisor.
Assessment criteria
At the end of each of the two modules that make up this course, the learner must take a 15-question quiz.
Teaching materials — The LégiSchool method
This course, available through our e-learning platform, follows LégiSchool’s standard methodology. Each module is divided into several sections, and each section into several chapters. The chapter is therefore the basic unit (or “building block”) of the course.
Each chapter of a LégiSchool course will always consist of a short instructional video (averaging 10 minutes) accompanied by a course handout that summarizes in writing all the key points covered in the video. Our course materials are comprehensive and feature numerous diagrams, tables, and visuals to ensure maximum clarity.
Finally, learners are encouraged to communicate regularly with a qualified trainer by phone or email through our educational and technical support service.
Accessibility
LégiSchool is committed to serving people with disabilities and has developed an Accessibility and Disability Charter for this purpose. All videos available as part of LégiSchool’s e-learning modules are captioned. In addition, additional accessibility features are available for people with disabilities—for example, audio recordings of quizzes and practice exams. To request these, please contact LégiSchool’s accessibility coordinator, whose contact information is provided below.
LégiSchool's Accessibility and Disability Coordinator
67 Saint Jacques Street
Phone: 01 43 26 58 10
Email: accessibilite[at]legischool.fr
The detailed training program
Module 1. - Understanding the basics of personal data protection
Section 1.1. - Definitions - Basic Concepts
1.1.1. - Definitions of key terms: personal data, processing, data file, etc.
1.1.2. - Identifying the key players in personal data protection
1.1.3. - Identifying a data controller and a data processor
Section 1.2. - The Fundamental Principles of the GDPR
1.2.1. - The principles of lawfulness, fairness, and transparency
1.2.2 - Purpose limitation
1.2.3 - The principles of fairness and accuracy
1.2.4. - Limitation of retention periods and the data lifecycle
1.2.5. - Obligations of integrity and confidentiality
1.2.6. - Protection of special categories of personal data
1.2.7. - Rights of data subjects
Quiz #1 (15 questions)
Module 2. - Implementing Personal Data Protection Within an Organization
Section 2.1. - Accountability and the Fundamentals of the Compliance Process
2.1.1. - The principle of accountability
2.1.2. - Identifying a personal data processing activity and mapping the processing operations
Section 2.2. - The principles of security by design and security by default
2.2.1. Security by Design – Definition
2.2.2. Security by Default
2.2.3. Security by Design and by Default – Examples of Implementing the Principles
2.2.4. The Issue of Free-Text Input Fields
Quiz No. 2 (15 questions)
Disclaimer: This training course does not cover all aspects of personal data protection. In particular, please note that this training is in no way intended to prepare you for the Data Protection Officer (DPO) certification based on the CNIL standards. If you would like a comprehensive overview of personal data protection in accordance with the certification framework for personal data protection training organizations, we invite you to visit the page dedicated to our Objectif DPO training course.
Last updated on December 22, 2025