Organisational measures

2 hour(s)
6 lessons
1 quiz

About topic

In this theoretical sub-module, small and medium-sized entrepreneurs (users) will be able to learn and understand:

  • that the organizational measures they need to apply depend on the risk level of processing personal data (low, medium, high, very high)
  • which internal acts need to be created to demonstrate compliance with the General Data Protection Regulation
  • the importance of educating all employees in the organization about data protection


The goal of this sub-module is to teach entrepreneurs how to assess the risks of processing personal data and take appropriate organizational measures to protect personal data accordingly.

Learning outcomes

  • identify risks associated with processing personal data
  • understand the organizational measures for protecting personal data that need to be taken to adequately protect personal data
  • describe the internal acts that need to be created to demonstrate compliance with the General Data Protection Regulation

Certification information

After watching the video and studying the theoretical part, the user will be able to take a quiz to test their knowledge. The user will be presented with statements and will have to indicate whether they consider them true or false. Once the user answers all the quiz questions, a section called RESULTS will appear with explanations for the answers. The system will generate a certificate as proof of passing the theoretical sub-module if the user achieves a minimum of 80% correct answers.

Connected practical modules

Practical submodule image
4 questions
Create a Rulebook on Information Security System
Practical submodule image
30 questions
Create your own Rulebook on Personal Data Protection