Posts By :

Admin Admin

Core skills for DPOs in Health: The case of Greece 770 513

Core skills for DPOs in Health: The case of Greece

As the General Data Protection Regulation (GDPR) recognises data concerning health as a special category of data, training in soft skills for DPOs are a prerequisite.  In this context, GDPR4H project, focused on the enhancement of the Greek DPOs’ competences in terms of the below fields:

  • Communication skills: The ability to effectively convey information and communicate at all  levels  was mentioned in our field research report in IO1.
  • Knowledge   skills:  In  line  with  the  communication  skills  but  different  in  nature, many DPOs highlighted that a DPO  should stay alert and always update their knowledge with real-case scenarios.
  • Legal skills: The possession of legal skills was mentioned as a the core aspect of data protection in health.
Free Online Course for Vocational Training: Specialization Course for Data Protection in Health. 554 224

Free Online Course for Vocational Training: Specialization Course for Data Protection in Health.

This curriculum aims at the skills’ enhancement for Data Protection Officers.

Modules of the Specialization Course for Data Protection in Health:

  1. Legal Aspects – the basis for every DPO: Data Protection Law
  2. It Security – how to ensure the security of IT systems in organizations: IT tools and methodologies applied to data protection
  3. Soft Skills – how to communicate and implement data protection thinking in organizations: Soft Skills for the DPOs
  4. Work based Learning (WBL) –Learning from practical examples (online via interactive videos and webinars)

Target group:

  • Pharmatheutical companies
    • hospitals
    • Medical offices: Medical doctors, Psychotherapists, Physiotherapists,
    • Pharmacies
    • Assurances
  • IT specialists,
  • HR managers,
  • legal experts,
  • learners

Minimum requirements: Educational qualifications according to EQF Level 5

  • For any technical issues, you may contact the Technical team of Skybridge, the platform developer, at: .
GDPR4H Curricula 554 398

GDPR4H Curricula

The safety of Private Data is a major concern for health institutions. The General Data Protection Regulation (GDPR) recognizes data concerning health as a unique and special category of data. Health workers must be equipped with special knowledge about technical, jurisdictional and communicative possibilities. In this framework, our European Erasmus+ Project “Upgrading the Health Sector with high-skilled Data Protection Officers under GDPR- GDPR4Health” introduces two professional curricula:
– Specialization Course for Data Protection in Health To enroll: -Αwareness Raising in Data Protection and Health To enroll:

Sensibility to data protection 150 150

Sensibility to data protection

The sensibility to data protection increased since the implementation of GDPR. Here some statements concerning the kind of sensibility which were quite different. Those statements of health professionals reflect a diverging degree of awareness for data protection. Health professionals report about the increase of awareness of patients who want to know who has access to their data and who demand the deletion of their data. They mentioned the increase of data protection complaints. One therapist reported on his experience with Group Therapy in which sharing of sensitive data was part of the therapy. “Privacy is an important contribution to a successful therapy.” On the other hand, patients complain, for example that their data are not automatically submitted to hospitals or why the wife cannot take the blood test results for her husband at home without permission. Several health professionals also notice a lack of sensitivity in handling data among colleagues and confirmed the need of awareness trainings in data protection when asking about it.

Results from GDPR4H gap analysis 150 150

Results from GDPR4H gap analysis

It was remarkably interesting to guide the interviews with health professionals asking them about their experience with data protection according to GDPR. These interviews were guided within the project GDPR4H, cofounded by the ERSAMUS+ program. Here some insights: Some psychotherapists, working with young people mentioned that since the implementation of GDPR commonly used applications are no longer allowed without establishing alternatives. They were used to communicate via messengers like whatsapp, because their young clients are the best to reach in this way. Now it is prohibited. Patient data can´t be sent by email. Our interviewees always emphasized that the data protection solutions for medical equipment must be practicable in daily business and comply with data protection efforts. Otherwise data protection will be regarded as an obstacle only. For, example, employees should be provided with secure software and hardware like encrypted hard drives so that they can work on divers working places in a data protection conform manner.



The Greek Parliament has approved the country’s draft law on the protection of personal data, which was applied on 29 August 2019. The Data Protection Authority implementation measures of Regulation (EU) 2016/679 focus on the adaptation of Greece’s current data protection laws to the General Data Protection Regulation (GDPR).

Some of the key aspects of the Greek data protection law include:

a. children under the age of 15 must have parental consent for information related to society services;

b. organisations can process special categories of personal data for predefined purposes, for instance, the provision of health or social care;

c. processing of genetic data for health and insurance purposes is  for sure prohibited;

Having the above in mind the GDPR4H course should adapt the course material to these needs, ensuring that it is aligned with these dimensions

Monitoring Event (25-26 June 2019) 945 412

Monitoring Event (25-26 June 2019)

On 25 and 26 June 2019, the monitoring event for project promoters of the Strategic Partnerships in Vocational Education and Training 2016, 2017 and 2018 took place in Bonn under the motto “Exchange – Network – Inform”.

In the workshops on the first day, the focus was on the professional exchange of project organisers and the dissemination and impact of project results.

On the second day, the participants informed themselves about financial management and discussed reporting, OER and social media. The focus of the first day was on the projects themselves: Poster sessions of the projects on the four main Erasmus+ priorities took place. The participants had the opportunity to present their projects, discuss the project contents and network.

GDPR4H workshop in Berlin (26 February 2019) 1024 765

GDPR4H workshop in Berlin (26 February 2019)

Health professionals and data protection experts met in a GDPR4H workshop in Berlin. They discussed the impact of the GDPR on their daily business and analyzed the status quo of trainings and education in this field. A researcher of our project lead the workshop and learned a lot, how the field thinks about the challenges and chances of data protection.
The results of this workshop are part of the report, which will be published on this website. The report is based on 8 further workshops, about 50 in-depth interviews and an online questionnaire not only in Germany, but in Greece and Romania, our partner countries in this project.

Survey on Data Protection in Healthcare

Survey on Data Protection in Healthcare 960 625

Questionnaires for Data Protection in Healthcare are now available.



Kick-off meeting in Berlin 1024 768

Kick-off meeting in Berlin

The consortium started the project “Upgrading the Health Sector with high-skilled Data Protection Officers under GDPR” with a kick-off meeting in Berlin. On 7th of December 2018 we all met in the rooms of Steinbeis-University Berlin. The purpose of the meeting was to gain a common understanding of the project in general and the project work plan and to discuss the key issues related to the first stage of the project.Each partner presented their organisations, the people working for the project and their specials sthrenghts which will make the project successful.For our team, working mainly virtually together it is very important to meet each other in person from time to time. So the next transnational meeting will be in July in Athens.

Privacy Policy

You may find our privacy policy here.

Privacy Settings

When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Here you can change your Privacy preferences. It is worth noting that blocking some types of cookies may impact your experience on our website and the services we are able to offer.

Click to enable/disable Google Analytics tracking code.
Click to enable/disable Google Fonts.
Click to enable/disable Google Maps.
Click to enable/disable video embeds.
Our website uses cookies, mainly from 3rd party services. Feel free to define your Privacy Preferences and/or agree to our use of cookies.