Professional Track
Data Protection Manager Track
Develop the capability to implement, manage and continuously improve an effective Privacy Information Management System aligned with ISO/IEC 27701
Overview
The Data Protection Manager Track is designed for professionals who are responsible for establishing and maintaining a structured approach to data protection within their organisation through a Privacy Information Management System (PIMS). Rather than focusing on legal texts or isolated compliance activities, the programme addresses data protection as a management system that integrates governance, risk management and operational control across the personal data lifecycle.
Target audience
Practitioners, implementers, and consultants involved in the design, implementation, or extension of privacy information management systems (PIMS) aligned with ISO/IEC 27701
Individuals with responsibility for introducing or expanding privacy management capabilities, e.g. when building on an existing ISMS
Current or aspiring privacy managers, PIMS managers, or system owners responsible for operating and steering a privacy information management system
Members of privacy, data protection, or information governance teams who play an active role in shaping, evolving, and continually improving privacy management practices
Learning outcomes
In this track, you will acquire the following capabilities.
Design a PIMS that actually works
Translate data protection requirements (e.g. GDPR) and ISO/IEC 27701 into practical, organisation-specific governance and processes
Integrate data protection coherently into the organisation’s existing management systems
Take ownership of data protection governance
Define roles, responsibilities and decision rights for data protection
Position data protection clearly within management and operational decision-making
Manage data protection risks, performance and improvement
Identify and assess data protection risks before they lead to incidents or compliance issues
Define monitoring and indicators that provide management with meaningful data protection information
Lead audits and continual improvement with confidence
Prepare and support internal and external data protection audits and assessments professionally
Use audit results, incidents and performance data to drive targeted improvements
Professional positioning
Establish a recognised competence profile as Data Protection Manager in ISO/IEC 27701-based organisations
Take responsibility for the implementation of a new PIMS or the coordination of an existing system
Act as a competent counterpart to senior management, clients, auditors and certification bodies
Track ID
HAT-DP-M
Duration
~21 days
Language
English
List price
CHF 9,500
Excl. VAT. VAT may apply depending on customer location and status.
Modular system
Reuse of modules across tracks
Previously completed modules are recognized, avoiding duplication when pursuing additional Halderstone tracks.
If you later decide to extend your competence to additional domains and ISO standards, you can earn additional manager credentials without repeating the common core. This allows you to build an integrated competence profile step by step with limited additional effort.
Two credentials with one track
Both credentials are awarded without expiry.
Registered credentials
In addition, track graduates can apply for a Registered credential for this role and discipline. It confirms capability in practice and ensures it remains current over time. Registered credentials require verified professional experience and periodic reassessment.
Registered credentials for this role and discipline
For employers
Understand what this credential signal in hiring and professional practice
Core modules
Shared foundations common to all Manager tracks
Specialization modules
Role-specific modules that deepen your expertise in Data Protection Management
Final assessment
Practical and theoretical demonstration of your acquired competence as Data Protection Manager
Capstone project
Final exam
Good to know
