Introduction
The aim of this course is to give the participants in the public and private sector a set of tools to navigate the complex legal landscape which governs digitalization projects and use of digital goods and services.
Organizations of all sizes need a foundational understanding of privacy, security and procurement rules – in order to ensure compliance with the law and to safeguard their reputation. In addition, when implementing organizational changes and relying on third-party services, cross-functional cooperation in the organization is of key value. Therefore, this course aims to provide the experts in one of the named areas with a deeper understanding of the interaction between these fields.
Privacy and data protection rules will be explored from multiple standpoints. While the main focus will be on the GDPR, the course will also explore how privacy can be integrated into services and products – and which reputational risks and benefits it presents.
Security remains one of the most discussed things in the digital world, and the course aims to provide a foundational understanding of the legal and operational framework surrounding it. This will entail an in-depth overview of mandatory legal sources to follow, as well as industry standards and contractual practices. On the operational side, the focus shall be placed on risk assessments and the implementation of practical technological and organizational measures for risk mitigation.
Lastly, the course will provide an overview of the legal framework relevant for procurement and use of third-party services. Standardized IT supply contracts will be explored in-depth, alongside the foundational rules on intellectual property rights. This will allow the participants to understand their rights and obligations when offering or using third-party goods and services.