Data Protection and Information Security Training

There have been significant changes to Data Protection requirements this year following the introduction of the General Data Protection Regulation (GDPR) and a new Data Protection Act 2018 which both came into force in May 2018.

Information Assurance Services provide Data Protection and Information Security training in two ways.

1)      Data Protection, Information Security and You

This is mandatory, annual on-line training for all staff and is linked to their Personal Development Discussion (PDD). This is accessible via Blackboard at the following link:

ITSX102 course in Blackboard

Please note, some staff receive off-line training as an alternative.  This may be the case where staff may not have access to a PC or off-line training is deemed more appropriate for their role.

This is a foundation-level training course for all University of Leicester staff.  It covers what you need to know about (i) information security, (ii) the Data Protection Act 2018, and (iii) the General Data Protection Regulation 2016, which will help you understand your responsibility for data protection. Specific guidance for staff with particular responsibilities (e.g. research staff) is being developed to complement this course.

If you do not comply with data protection and information security requirements, you are not only breaching University of Leicester policies but also breaking the law.

This course will highlight the importance of protecting your own and others' data. It will help you to prevent your own and others' data being misused in ways you aren't aware of or don't agree with - or for criminal purposes.  By the end of this course, successful learners will be able to:

-  Apply the core principles of data protection and information security appropriately to their day-to-day activities within the University

-  Recognise when someone is exercising their individual data protection rights and know how to respond in compliance with data protection law

-  Apply appropriate technical and security measures when processing any data, in order to ensure the confidentiality, integrity and availability of the data

There are 4 units (listed below). A summary quiz follows the units: you will need to achieve a score of 80% or higher in order to pass the course. The course, excluding the summary quiz, should take approximately 60 minutes to complete, depending on existing knowledge.

Unit 1: Key Definitions and Principles

Unit 2: Lawful Basis and Individual Rights

Unit 3: Information Security

Unit 4: Accountability and Governance

Summary Quiz

2) Data Protection in Practice

This is non-mandatory off-line training.  It is offered in addition to the mandatory on-line training and can be tailored to a specific service.

More information about new dates will be publish in the next month.


Share this page:

Request Information

To make a Data Subject Access Request, or a Freedom of Information Request, please contact IAS directly.

Data Protection Officer

The Data Protection Officer is:

Elisabeth Taoudi, Data Protection Officer and In-House Commercial Lawyer, University of Leicester, University Road, Leicester, LE1 7RH

0116 229 7640