Falconbury Logo
Presented by
Falconbury

GDPR: Legally Processing and Sharing Data and Managing Data Breaches Training Course

Dealing with data can be a legal minefield in any business. This webinar will bring you right up to date with how you can legally process and share data, and help you understand and manage a data breach.

★★★★★ "All was useful"

14 January 2025
+ 13 May 2025, 11 September 2025 »

from £350

Need help?  Enrol/reserve

Course overview

This intensive webinar will make sure you're fully aware of the complex law relating to the processing and sharing of personal data. The laws in this area can be confusing. Getting it wrong can have big consequences for your business.

Using practical tips and examples, Mark Weston will bring you up to date with the latest law and developments, and how they affect best practice. He will explain the differences between data processing and data sharing, as well as looking at the laws and regulations related to managing data breaches and how to navigate your way through them for the best outcome.

There will also be time for you to ask your questions to the expert trainer. 

This training course is part of our Commercial Contracts Training Course collection which has been designed for the in-house lawyer.

Presenters firm

Weston Legal is a leading specialist boutique firm specialising in Commercial law, Technology law, Media law, Intellectual Property law, Data law and Regulatory law and practice. From its founding, the firm has always committed to provide a fast and efficient service wherever its clients operate. As its business has grown and diversified, it has recognised the strength and importance of the principles held by its people; putting clients first and operating as one team to realise its goals and share its success. These principles have formed the foundation of its culture and the way its lawyers interact with one another and the firm’s clients. They are what distinguish it and are vital to its future.

To find out more about what Weston Legal can do for you, please contact Mark at westonlegal.ltd or see https://uk.linkedin.com/in/markwestonlegal


Mark also operates as a leading consultant to Hill Dickinson LLP, a leading and award-winning international law firm with offices in London, Liverpool, Manchester, Leeds, Birmingham, Piraeus, Singapore, Monaco and Hong Kong. As a full service law firm, it delivers advice and strategic guidance spanning the full legal spectrum from non-contentious advisory and transactional work, to all forms of dispute resolution. The firm is on the panel of a number of national and international organisations and regularly competes against many of the City firms. In recent months, they have been able to win a number of panel reviews against City firms.

To find out more out what Mark can do for you via Hill Dickinson, please contact him via www.hilldickinson.com

Benefits of attending

By attending this course you will:

  • Learn about the law and regulation relating to data processing, data sharing and data breaches
  • Understand the definition of 'controller', 'processor' and 'joint controller'
  • Examine the obligations of the controller and the processor
  • Get to grips with the law relating to data breaches
  • Clarify the different types of breaches and what they mean
  • Get up to date with the reporting requirements under the different applicable laws

Who should attend?

This course will be of particular interest to:

  • In-house lawyers
  • Private practice lawyers
  • Compliance officers
  • Company secretaries
  • Board members
  • HR professionals
  • Marketing professionals

Plus, anyone who uses or possesses personal data.

Enrol/reserve

This course will cover:

Definitions of controller, processor and joint controller and where the lines blur

  • Factors the regulator considers that go into the definitions of each in difficult cases

Controller obligations, processor obligations and splitting controller obligations between joint controllers

Application of controller to processor clauses and commercial considerations

Managing data breaches: outline of applicable laws

  • Data Protection Act 2018, UK GDPR
  • The Privacy and Electronic Communications (EC Directive) Regulations 2003 (PECR)
  • Communications Act 2003
  • The Network and Information Systems Regulations 2018 (NIS Regulations)
  • The Regulation of Investigatory Powers Act 2000 (RIPA)
  • Investigatory Powers Act 2016
  • Computer Misuse Act 1990
  • Official Secrets Act 1989
  • Governance obligations
  • Copyright Designs and Patents Act 1988
  • Trade Marks Act 1994 and Forgery and Counterfeiting Act 1981 may also apply alongside the Fraud Act 2006 and Proceeds of Crime Act 2002
  • The Malicious Communications Act 1988

Understanding the different data breach types

  • Hacking
  • Unsolicited penetration testing
  • Denial-of-service attacks
  • Malware infections
  • Phishing
  • Distribution, sale or offering for sale (or possession or use) of hardware, software or other tools used to commit cybercrime
  • Identity theft and identity fraud
  • Criminal issues
  • Civil issues

Territorial issues to consider

Reporting requirements under the different applicable laws

Enrol/reserve

Mark Weston
Sederby Consulting Limited

Mark Weston has run his own law firm, Weston Legal, since 1 January 2024. He is also a consultant at Hill Dickinson LLP where he joined in February 2016 as a partner and Head of its Commercial, TMT & IP Practice. Before that, he was a partner and Head of the Commercial/IP/IT Team at Matthew Arnold & Baldwin LLP and before that, he spent several years at Baker & McKenzie in London and Chicago and has also previously been seconded to Hewlett Packard and other technology businesses. He changed role to become a consultant in Hill Dickinson’s London office in January 2024.

Expertise: Mark’s practice covers both non-contentious and contentious matters in all areas of commercial law, intellectual property law, information technology law, Internet, electronic commerce and on-line services law. He specialises in commercial and Tech issues. Mark is used as a ‘trusted adviser’ by many clients in all sorts of businesses and often acts as ‘private practice in-house counsel’ for many clients. He specialises in tech and internet businesses.

Clients: Just some of Mark’s more well-known clients include Elstree Film Studios, RTL Group S.A., Sykes Cottages, Retailcorp Brands LLC, The Gulf Marketing Group, Moneynetint Limited and the BBC.

Some detail: Mark has extensive experience in advising clients on all manner of commercial matters (such as business planning and solutions, franchising, distribution, agency and marketing) through branding and intellectual property exploitation and licensing, to advice and documentation regarding hardware and software issues (such as development, licensing, maintenance and distribution, SaaS and cloud, Internet transactional solutioning, B2B, B2C and B2G electronic commerce, S-commerce and M-Commerce, social media, outsourcing, facilities management, procurement, IT policies, data protection (privacy), GDPR and freedom of information issues as well as artificial intelligence (AI)). He has a particular expertise in new digital business and revenue streams. He is also experienced in dealing with software disputes and IT litigation. The increasingly extensive media side of his practice relates primarily to publishing (both real world and digital content), to games and gaming platforms (and particularly transmedia technologies), advising companies about their advertising onscreen, online and in print and managing their public communications strategies generally (dealing with the CMA and ASA in the process) – and also a smattering of television, film and music exploitation. Recently he has been very active in AI advice.

More unusual: 

Mark has previously spent several months on secondment to Hewlett Packard and he has also been seconded to assist in the legal problems arising in new technology companies such as Symbian. From 2000 to 2001, Mark was resident in the Chicago office of Baker & McKenzie advising US clients on European and UK aspects of IT and electronic commerce law and practice.

Mark is the author of the Legal Practice Companion, a parallel text book used at several law schools, the editor of the IP and Media Law Companion as well as the rest of the Companion series of books published by Bloomsbury Professional, Tottels, Cavendish Publishing and Oxford University Press. He has noted numerous reports for the IT Law Reports and is widely published in Computing, Computers & Law, Computer Law & Security Report, IT Law Today, Intellectual Property World, Solicitors Journal and many other journals both online and offline. Mark has also authored articles syndicated in the national and trade press and is regularly quoted in national newspapers and is heard on radio as an expert in his fields. Mark is the author of the Business Names on the Internet chapter in the PLC Ecommerce Manual as well as numerous other articles on various Commercial & IT law topics.

Mark lectures regularly on all Commercial, IP and IT law topics, including at the IBC IT ‘Summer School’ Programme in Cambridge, England; the Falconbury and MBL two-day and three-day Commercial Contracts seminars (run several times a year) and IT Contracts seminars (run three times a year) in London; and he has previously lectured at the Annual On-line & Internet Commerce Law Institute seminar in Chicago and tutored at University College London.  He also runs a programme of bespoke training schemes on commercial law, IP law, IT law, AI law and data law as well as soft skills programmes such as negotiation skills and presentation skills.

Finally, you may have seen that Mark likes blogging and writing books, which are available at all good bookshops! He also appears regularly on BBC1 (usually providing advice on-screen to BBC Watchdog) and also on Sky News as a legal commentator, as well as trying to avoid the huge quantity of pink powder the TV make-up girls want to apply to his increasingly receding hairline.

More details

NEW higher discounts for multiple bookings - bring your colleagues to make your training budget go further:

  • 30% off the 2nd delegate*
  • 40% off the 3rd delegate*
  • 50% off the 4th delegate*

Please contact us for pricing if you are interested in booking 5 or more delegates

14 January 2025

Live online

13:30-17:00 UK (London) (UTC+00)
14:30-18:00 Paris (UTC+01)
08:30-12:00 New York (UTC-05)
Course code 14431

  • GBP 350 400
  • EUR 490 560
  • USD 562 640

Until 10 Dec

View basket 

 
Not ready to book yet?

for 7 days, no obligation

13 May 2025

Live online

13:30-17:00 UK (London) (UTC+01)
14:30-18:00 Paris (UTC+02)
08:30-12:00 New York (UTC-04)
Course code 14702

  • GBP 350 400
  • EUR 490 560
  • USD 562 640

Until 08 Apr

View basket 

 
Not ready to book yet?

for 7 days, no obligation

11 September 2025

Live online

13:30-17:00 UK (London) (UTC+01)
14:30-18:00 Paris (UTC+02)
08:30-12:00 New York (UTC-04)
Course code 14908

  • GBP 350 400
  • EUR 490 560
  • USD 562 640

Until 07 Aug

View basket 

 
Not ready to book yet?

for 7 days, no obligation

* Early booking discounts may not be combined with other discounts or offers. As such, the discounts for 2nd/3rd/4th delegates are based on the full price; and apply only when booking multiple delegates on the same date.

Reviews of IPI's GDPR: Legally Processing and Sharing Data and Managing Data Breaches training course


Content had practical examples relating to the applicable Legislations/Regulations and the speaker communicated this clearly.

Nov 9 2023

Bisi Akanni
Information Compliance Officer, London School of Hygiene and Tropical MedicineMedicine

Nov 10 2022

All was useful

Marina Varghese
Paralegal, VITOL SERVICES LIMITED

Aug 3 2022

Very good.

Mariia Lys
Consultant , CIS London

Aug 3 2022

Overall a good and informative course. :)

Isha Mirza-Bari
Contracts Specialist , Simbec-Orion Group Limited

United Kingdom

  • A&L Goodbody
  • AGCO Limited
  • Boodle Hatfield LLP
  • Boxxe Ltd
  • Cargo Creatuve Ltd
  • CIS London
  • City Football Academy
  • Dematic Limited
  • Future Electronics Limited
  • Impellam Group
  • Impellam Group PLC
  • Jisc
  • Knights Professional Services Limited
  • London School of Hygiene & Tropical Medicine
  • London School of Hygiene and Tropical MedicineMedicine
  • Opus Restructuring LLP
  • Orion Clinical Services Limited
  • Reckitt Benckiser
  • RiverStone Management Ltd
  • Shearwater Group PLC
  • Simbec-Orion Group Limited
  • Simbec-Orion Group Ltd
  • SRK Consulting (UK) Ltd
  • TMF Group B.V.
  • VITOL SERVICES LIMITED
  • VTG Rail UK Ltd

Saudi Arabia

  • LFSH
  • Thiqah Business Services

Austria

  • Storyblok GmbH

Germany

  • W.L. Gore & Associates GmbH

Korea, Republic Of

  • Samsung Bioepis

Portugal

  • TMF

Switzerland

  • Medicines for Malaria Venture (MMV)

Enrol/reserve

Multiple colleagues? See above for details of our discounts for 2, 3, or 4 delegates. For more, talk to one of our training experts to discuss how to:

Run this course conveniently and cost-effectively in-house for your staff and colleagues

Aleksandra Beer

Aleksandra BEER
Training expert

Yesim Nurko

Yesim NURKO
Training expert

+44 (0)20 7749 4749

inhouse@ipi.academy