FDPPI is the pioneer in India for development of skills required for being an efficient Data Protection Officer in India. FDPPI’s “Certified Data Protection Officer” program has already been rolled out with the first batch of the first module of the program having been completed on 23rd February 2020.
Cyber Law College, a division of Ujvala Consultants Pvt Ltd, which was the pioneer in introducing Cyber law courses in India in the year 2000 was also the pioneering training partner for FDPPI in conducting the first training program of the “FDPPI Certified DPO” (FCDPO-I) program. It will continue to work on more of such programs either online or offline as well as working on other modules as envisaged for the multi model program.
FDPPI’s program for development of skilled DPOs in India, is conceived by Naavi with the vision of developing an alround DPO personality which includes “Knowledge with Attitude and Commitment”.
The motto of FDPPI is the development of “Knowledgeable, Efficient and Ethical” eco system in India for Data Protection. Accordingly the DPOs who will be the custodians of developing such a system have to be knowledgeable as well as have the right attitude required for a DPO without losing on the commitment to the requirements of the profession which includes the loyalty to the nation.
“Data Protection” is not simply understanding the clauses of the PDPA. Being aware of the law is only the knowledge part. The attitude part covers preparing the DPO to tackle challenges on three fronts namely being answerable to his boss within the organization which pays him the salary, the DPA which has a duty to protect the Privacy of Indian individuals and the Data Principals who look at the DPO as the custodian of their Privacy Rights.
While most of the international certification programs end with the testing of knowledge of the law, FDPPI’s program as of now recognizes this as only different modules of the development of the awareness about the law.
The Module 1 (or Module-I) which was completed recently, covered the knowledge level of Indian law as at the present level along with a comparison with GDPR which is the other globally known law.
The future modules envisaged are
Module 2: (Module I+)
More on Indian law when the law is passed into an Act, a DPA is appointed and the DPA issues some basic regulatory guidelines. This program will be only undertaken after the required developments take place. Hence we need to wait for some time to roll out this module. (Eventually, Module I and I+ would be merged into one)
Module 3: (Module T)
This module will cover the technology related knowledge essential for an efficient DPO. This will cover the technologies required for compliance and will also discuss the challenges to data protection arising out of the new technologies particularly in the field of AI, Big Data, Encryption etc.
Module 4: (Module B)
This module will cover the behavioural aspects related to an efficient DPO. This will cover interpersonal relationship skills including Leadership, Decision Making, Motivation, Team Building, Counselling, Conflict resolution etc.
Module 5: (Module G):
This module will cover a study of at least 5 international data protection laws including an in-depth study of GDPR and Data Protection Laws applicable to USA along with some other relevant laws such as Singapore, Australia as well as one optional country. This would be more an extension of the “awareness of law” from the Indian laws covered in Modules I and I+ to the global scenario
Module 6: (Module A)
This module will cover the skill requirements of a “Data Auditor” and follows the modules I, I+,T and B. This will encompass the system audit, information security audit and focus more on the harm audit, the DPIA and the annual data audit requirement under the law.
It is expected that in due course I and I+ will be merged into one and the other modules such as T, B, A and G will remain independent.
FDPPI realizes that the content in each of the individual module is dynamic and would evolve over time. For example a Module T conducted in 2021 would be far more advanced than Module T conducted in 2020. To some extent Module B may not change much. Module G is also dynamic because new laws may come in. The laws of Europe and USA could be a common factor while others could be changed as per the business requirements envisaged. Module A like Module B would also be more or less consistent except for the changes in technology or law that may required to be factored in.
FDPPI has rolled out this plan of action and Naavi’s Cyber Law College will initially implement many of these modules as if it is an in-house implementation agency of these ideas. The objective is that when the Indian DPA is looking out for professional help for itself in designing the codes and practices and the conscientious industry players are getting ready in advance to be compliant before it is Compulsory, there will be a helping hand nearby with trained DPOs and Data Auditors.
At the same time, FDPPI wants to extend the partnership opportunities to other professional organizations who may have expertise in specific areas suitable for the different modules. They will work on a non exclusive basis to design and implement the training programs under these different modules. Some of the partners could work with regional focus and some could work pan India.
Towards this objective, FDPPI is open to receiving offers of “Training Partnership” with the motto… “Let’s together build Knowledge with Attitude and Commitment”.