Mission

The GDPR for Data Supporters training aims to contribute towards the professionalisation of research support staff with respect to the responsible handling of personal data, as laid down in the General Data Protection Regulation (GDPR). By explaining the meaning of the GDPR in the context of scientific research, we provide research support staff with practical tools for their work.

Proper cooperation between the different specialisations in the area of support is of great importance in this respect. That is how data stewards, internal review boards, ethics committees, privacy officers, and research project managers can ensure integral and consistent support for the research activities.

One of the goals of this training is to help resolve many of the common ambiguities and misunderstandings relating to the GDPR, in that way reducing the number of research projects delayed due to a misunderstanding of the GDPR. We also expect this GDPR compliance support to have a positive impact on researchers. Guaranteeing data protection will no longer be seen as an obstacle for researchers, but only as a precondition for being able to carry out innovative and high-risk research in a responsible manner.

Target group

The training is aimed at data supporters in the broad sense who wish to acquire in-depth knowledge about personal data, the GDPR, and the measures to be taken to protect these personal data. It is assumed that the participants are aware of the information provided in the basic training course entitled ‘Essentials 4 Data Support’. This training can also be done by researchers, if they wish to expand their own knowledge of these topics, so that they can work in compliance with the GDPR right from the design phase of their research.


Learning objectives

The name of the training – Beyond Essentials 4 Data Support – refers to the primary purpose of the training, i.e. deepening and broadening the basic knowledge and skills (the ‘Essentials’) of privacy officers or research support staff with respect to the protection of personal data in scientific research.

After doing the training, the participant:

  • Is aware of what constitutes direct and indirect and regular and special categories of personal data and can indicate what type of personal data are or are not covered by the GDPR
  • Understands the main principles of the GDPR and can apply these to scientific research
  • Can make reasoned choices to safeguard the GDPR principles
  • Can determine the technical and organisational measures that are desirable and necessary within a specific research context to ensure proper protection of personal data within the research project

In this training, our primary goal is to offer an accessible way in which the complex subject matter of the GDPR can be concretely used to provide support to researchers. By including quizzes, case studies, and summaries of the main points at different times during the training, we hope to create an enjoyable learning experience for the participants.

Structure of the training

This training consists of four theoretical modules and one practical module. The theoretical modules address the following topics:

Each module begins with a knowledge test that allows participants to test their prior knowledge. A brief summary of the key points from the module is included with each test. The subsequent theoretical part of each module is narrative in nature. Wherever possible, case studies are included to bring the theory to life and make it more concrete.

The practical module (Module 6: Complex cases) presents a series of research studies, where the participant must select the right answers to questions about how the researchers have safeguarded the underlying principles of the GDPR and what personal data protection measures have been taken. This module is intended as practice material, allowing participants to put into practice everything they have learned in the theoretical modules.