Risk & Compliance

• What is included in Directive (EU) 2019/1937?

• Who is affected?

• What options do whistleblowers have?

• Reporting through internal and external channels

• Prohibition of retaliation

• What to do to comply?

• Outline of competition law

• Agreements

• Dominance

• State aid

• Unfair commercial practices

• Record keeping and business communication

• What is personal data?

• Who is affected?

• Data Controller and Processor

• Data transfer

• What to do to comply?

• The concept of the GDPR and personal data

• The importance of compliance in the field of data protection

• Basic data security and data awareness rules, including practical tips

• What data breaches are and how to handle them properly

• The most important rules related to data subject rights

• The purpose of imposing sanctions

• The types of sanctions

• The applicability of the relevant sanctions regime, including any recent sanction regime

• Sanctions evasion techniques

• The risk for non-compliance with sanctions and detect sanctions risks

Module 1 – What is artificial intelligence (AI)

• Different types of AI

• Key AI concepts

• How different types of AI apply to real-world scenarios

• AI’s strengths and limitations compared to human intelligence

Module 2 – AI risks and limitations

• Factors affecting AI accuracy

• Bias in AI and its implications

• The challenges in ensuring AI explainability and interpretability

• The risks associated with AI use

Module 3 – How to use GenAI

• Key factors for selecting a GenAI tool

• Skills for structuring effective prompts

• Key considerations for interacting with GenAI

• When to incorporate GenAI into everyday use

Module 4 – The EU AI Act and AI safety

• What is the AI Act and why is it important?

• Obligations under the AI Act

• Best practices for Using AI safely and effectively

• How the way you use AI can affect the AI Act obligations of your organisation

• The changing landscape of cybersecurity oversight 

• Cyber incidents involving different industries

• Cybersecurity threats involving customers

  • Malware

  • Phishing

  • Web application attack

  • DDos

  • Data breach

  • Insider threat

  • Botnet

• Companies’ role in managing crisis, and effective ways to oversee the process 

• Insights on how corporations can most effectively discharge their responsibilities when a crisis strikes.

• What is DORA?

• Changes made by DORA

• Key elements of the pillars in DORA

• Regulatory technical standards and implementing technical standards of DORA

• Differences between NIS and NIS2

• Essential and important entities defined by NIS2

• Main requirements and obligations set out by the NIS2

• How does the NIS2 apply to your organisation?

• The objective of the course is to support project managers with appropriate theoretical and practical tools for successful project delivery.

• Why is managing change important?

• What tools can be used for a successful transformation?

• What are the essentials of corporate culture?

• Background of Directive (EU) 2023/970

• An overview of the Directive

• Pay transparency in line with the Directive

• Enforcement mechanisms under the Directive

• What do we mean if we talk about diversity?

• What does an inclusive workplace look like?

• What value can diversity bring to an organisation?

• How to build a diversity strategy?

• Inclusive leadership

• Covering topics from EU Directives, such as pay transparency and gender equality​

• International position evaluation methodologies

• Job architecture/position matrix

• Salary banding

• Salary adjustments

• Salary strategy

• Individual differentiation within bands

• Requirements of the transfer pricing documentation as per the OECD Transfer Pricing Guidelines and BEPS Action 13

• Specific elements of the transfer pricing documentation (i.e. Master File, Local File and Country-by-Country Report)

• Basic information on transfer pricing principles