Back to All Events

GDPR and The Health Research Regulations

  • 5 CPD Hours Apex Building, Blackthorn Road Sandyford Business District D18 (map)

Understand the role of GDPR when applied to healthcare research, learn how to conduct an assessment and how to ensure compliance

In addition to GDPR and the Data Protection Act, the Health Research Regulations were signed in to law by ministerial order in August 2018. These pieces of law have a significant impact on how healthcare research is conducted. 

Legal responsibility for compliance with these new Data Protection laws will lie with data protection officers, researchers, principle investigators and the organisations engaged in research. Research ethics committees will also have an oversight role. Failure to comply carries the potential of heavy fines and civil litigation.

This one day course will provide delegates with clear processes to follow when conducting health research to ensure compliance with the relevant law and guidelines. It will also provide guidance on constructing a DPIA (data protection impact assessment) for research purposes. It will clarify the roles of the processor and controller, and will show the key risks in the process and how to manage them. All delegates will receive a full course pack to refer back to, and will leave with 5 structured CPD hours. 

Course Content

  • Health Research Regulation, Data Protection Act 2018, GDPR and their impact on Health Research

  • The roles of the data processor and data controller 

  • The 7 principles of GDPR 

  • Knowing the difference between identifiable, pseudonymised or anonymous data

  • The lawful basis for processing data 

  • Conducting a research data risk assessment

  • The methodologies of DPIA 

  • The rights of the subject and how to inform them 

  • Consent 

  • What constitutes a GDPR compliant consent

  • Dealing with capacity issues and consent

  • Consent Declaration Committee

  • Transferring research data outside of the EU 

  • Ongoing research and their obligations

  • Key risks and risk management 

  • Producing the DPIA report

Who Should Attend?

This course would be relevant to data protection officers, researchers, data processors, data controllers or those responsible for the implementation of your organisation’s data protection.


On completion of this one-day training course, you will receive your CMG MasterClass Certificate as well as your CPD Certificate containing 5 Structured CPD Hours. Please note certificates are issued at the close of the training course to participants who complete the full five hours.


This training course costs €375 EARLY-BIRD Rate (Normal rate €425). The price includes course documentation and training pack, teas and coffee, snacks, biscuits, fruit on arrival. Lunch is a light fare containing freshly cut sandwiches, wraps, a selection of teas and coffee. Alternatively, you can avail of the local food stores and coffee shops within a one-minute radius of the training centre for hot food or alternative lunch options.