Data Quality Management for GDPR

Data Quality Management for GDPR

GDPR compliance is dependent on 'fit for purpose data'

GDPR is the EU law describing how organisations will manage data about people. It substantially raises the bar on the need to create and maintain ‘fit for purpose’ data.

The quality of your data and the evidence you have to demonstrate your approach to quality are key measures that will be used to assess your organisation.

Your customers will not accept sloppy practices on data they have given you in good faith.

Your regulators will not accept sloppy practices as excuses for breaches or failures in holding poor quality data or having insufficient consent.

Resources for managing quality are limited so a risk based approach to managing and remediating data quality has to be adopted.

This course describes the requirements for ‘fit for purpose’ data within GDPR, describes best practice data quality management and explains how to apply them to GDPR compliance.

This module is part of the EDMworks Data Management Agenda for Privacy

Completion of the course will enable delegate to:

- Describe key characteristics of GDPR

- Describe key impacts of GDPR on organisations

- Describe key risks organisations face as a result of GDPR

- Describe the key data quality characteristics required by GDPR

- Describe the risk based approach to managing quality

- Explain the process for managing personal data

- Explain the application of best practice data quality management approaches to satisfying requirements of GDPR

The course is structured into the following components:

One eLearning course segmented into three modules. The contents of the three modules are described in Course Contents.

The course consists of:

- A one day seminar/workshop, highly interactive with case study exercises and feedback

- An eLearning self-paced module on the General Data Protection Regulation

- An eLearning module on BCBS 239, Risk data management regulation and governance practices including end to end quality management

Duration and timing

The workshop is a full day from 9-5pm.

Each eLearning module has an approximate duration of 1 hour.


The workshop has a certificate of completion.

Each eLearning module contains its own approved certification test.

Delegates can take the eLearning tests at any time.


There are self-assessments in each eLearning module that you can take as many times as you like. This is confidential and does not form part of your test score.

On successful completion, a certificate is issued and an on-line record of achievement is maintained

Global availability

The course modules and certification test are globally available without restriction.

They can be accessed 24/7.


The cost of the course for one delegate is GBP 650 includes the workshop and two eLearning courses (approx value GBP 200.00) (plus VAT where applicable). 


When making payment you will be presented with several different PayPal options. Please choose the right one for you. If you have any queries, please contact us at


If you would like to pay against an invoice then please email us with Purchase Order details at

Corporate Rates

If you are interested in making a bulk corporate order, please email for more information.

This provides the delegate with:

- The eLearning Courses

- Recognised certificates

- Access to the workshop

Course Contents
Key characteristics and impacts of GDPR

- Background to GDPR

- New business processes required

- Privacy by design and default

- Consent

- Third parties

- The evidence required for compliance

- Summary of risks posed by GDPR

Key questions for personal data in the digital world

- What is personal data?

- Where is it processed?

- Where is it stored?

- How ‘fit for purpose’ is it?

- Who is accountable for it?

Best practice quality management

- The Demming Lesson

- Evolution at Toyota

- TQM, Lean and derivatives

- The shared/enterprise data dimension

- Measurement? At which point?

- Current best practice for data quality

- A culture of quality

- The continuously learning organisation

The new data quality thresholds for GDPR

- Specific considerations of GDPR for data quality

- Implications of new rights for data subjects: minimal, consent and life-cycle

- Implications of new powers for regulators

- Evidence required for compliance and best practice

- Penalties for failure, breach or non compliance

The Overall Process of Data Quality Management

- Risk based assessment

- Decomposition of outcomes and identification of personal data

- Classification of data according to sensitivity and risk

- Data flows and transformations

- Accountability and ownership

- Quality dimensions and measurement including profiling rules

- Root cause analysis

- Remediation

The risk based dimension for data quality management

- Privacy risk, breaches and process failures

- Identifying privacy risk

- Measuring privacy risk

- Prioritising privacy risk

Data dictionary, inventory, flows, process and lineage

- A model for personal data

- More than an enterprise glossary of terms

- The inventory of data in the organisation

- Mapping the flows from capture through to storage

- Mapping the life cycle from creation to usage and disposal

Last modified: Monday, 26 September 2016, 2:18 PM