Implementing a Personal Data Protection Law Framework

The landscape of data protection is rapidly evolving in Saudi Arabia (KSA), and professionals such as Compliance Officers, Data Protection Officers, and Auditors, must equip themselves with the knowledge and skills required to ensure adherence to the new Saudi Arabia Personal Data Protection Law (PDPL). This practical course is designed to empower participants with the essential knowledge and tools needed to successfully implement a robust data protection program within their organizations in KSA. This course is particularly well-suited for Compliance Managers and individuals seeking to expand their knowledge in the realm of processing personal data and its practical implementation within their organizational framework. By the end of this course, participants will be well-prepared to navigate the complexities of PDPL compliance in KSA and spearhead data protection initiatives within their organization. PrerequisitesNone — open to managers at all levels

4 Days

Book an In-House Training Book Now

Course Methodology

This course is based on open discussions, question and answer sessions, group exercises, activities, videos, case studies and presentations based on best practices, case studies and core principles.

Course Objectives

By the end of the course, participants will be able to:

Review and reinforce understanding of Personal Data Protection Law (PDPL) principles and the rights of data subjects
Proficiently identify the lawful basis for data processing
Gain comprehensive knowledge of the responsibilities and duties of a Data Protection Officer (DPO)
Apply acquired knowledge to establish an effective privacy program, encompassing both centralized and hybrid models
Develop strategies for implementing the necessary technical and organizational measures to safeguard personal data within your organization

Target Audience

The course is suitable for anyone who will be managing the implementation of the Saudi Arabia Personal Data Protection Law (PDPL). This includes but not limited to; compliance officers or managers, data protection officers, auditors, IT managers, project managers, lawyers and business analysts. While there are no specific prerequisites for enrolment, having a foundational understanding of data protection concepts can be advantageous.

Target Competencies

Investigating
Compliance
Leadership
Decision making
Communication with stakeholders

Course Outline

Personal Data Protection Law (PDPL) Overview
- Data Protection terminology
- Controllers and Joint Controllers, their roles and responsibilities
- Privacy laws around the world
- Saudi Arabia Personal Data Protection Law (PDPL)
- Privacy Governance
- The duties and obligations of the Data Protection Officer
The Role of the Data Protection Officer – the first 30 days
- Understand the lawful basis for processing personal data
- Governance
- Data Mapping – How to begin
- How to record processing activities
- Technical and organisational measures required for personal data
Compliance
- When and how to conduct Data Protection Impact Assessments (DPIAs)
- When and how to conduct Legitimate Interest Assessments (LIAs)
- Website compliance
- Marketing, promotions and events
- Policies, controls and procedures, and communications
- Intra-group transfer agreements and Data Processing Addendums
The Complete Data Protection Program
- Data Subject Access Requests
- Incident Response Plan
- Data Retention
- Training and Awareness
- Monitoring and the completed data protection program

2026 Schedule & Fees

Course Fees Starting From

USD 0

Location & Date

Date	City	Language	Price	Action
No upcoming sessions are currently scheduled. Contact Us

Virtual Learning

Ready to advance your career?

Join thousands of professionals who have already enhanced their skills with Al Mawred.