My UM
My UM
Search

Programme

This course offers an in-depth analysis and explanation of how data protection concepts, principles, and obligations apply in humanitarian action. How should these principles be understood in crises contexts? What do they mean in practice for humanitarian organisations operating in increasingly digital environments? What are the practical actions required to implement those principles?

A wide range of experts are teaching in the course, including ECPC Maastricht University experts, professionals working in the field of humanitarian action, and academics working at the intersection of data protection, technology, and humanitarian action.

PART I - Privacy and Data Protection Fundamentals

DAY 1

  • International data protection legal framework
  • Key data protection concepts, principles and obligations
  • Lawfulness and fairness of processing personal data
  • Processing sensitive personal data

  • The rights of data subjects and how to handle them

     

  • Actors, roles and responsibilities: Controllers and Processors

PART 2 – Implementing the data protection concepts, principles and obligations in practice

DAY 2

  • Accountability, demonstrating compliance and supervisory actors
  • The role of the DPO and the interaction with the rest of the organisation
  • Data aggregation, pseudonymisation, anonymisation, re-dentification, statistical disclosure control tools
  • Do's and Don'ts Group work: Privacy and data protection principles, actors and data subject rights in practice

DAY 3

  • International Data Transfer and impact of national and regional frameworks
  • Data security - Technical and organisational security measures
  • Data protection by design and by default
  • Data protection impact assessments
  • Practical example: Digital Contact Tracing
  • Do’s and Don’ts Group work: When and how to conduct a DPIA in practice

PART 3 – Applying the Data Protection principles to specific processing situations and technologies of relevance to the humanitarian action sector

 

DAY 4

  • Biometric data: Introductory lecture + case study
  • Cash Transfer Programming: Introductory lecture + case study

 GRADED GROUP ASSIGNMENT

DAY 5

Keep Ahead: Emerging Topics linked to Personal Data Protection

  • Emerging issues and challenges in the field of Data Protection in the humanitarian action sector
  • Case study
  • Time for questions

 MULTIPLE-CHOICE EXAM

 FINAL EXAM Written assignment - OPTIONAL

ECPC

The training involves preparatory distance learning, covering: the origins of data protection principles, the right to privacy, and why data protection is increasingly relevant and important in humanitarian action.

The complete one-week in-person certification training provides participants with practical "do's and don'ts" and the most effective methodology to comply with data protection requirements and perform effectively the role and tasks of a DPO in the field of humanitarian aid. Get your DPO-HA Certification from Maastricht University!

Maastricht University successfully applies the Problem-Based Learning (PBL) education model. We believe that knowledge alone is not sufficient in a field makes by constant changes, such as the field of privacy, data protection, and cybersecurity. Throughout the training programme, you are encouraged to actively work on real-life issues in order to acquire the skills needed to perform most effectively as a DPO in your organisation.