Training Objectives

By the end of the programme, participants will be able to:

• Understand the interplay between the AI Act and GDPR
• Identify the roles and responsibilities of Deployers/Users, Developers/Providers, Controllers, and Processors
• Recognise overlapping and distinct obligations under both Acts
• Appreciate the risk-based approach to evaluating AI systems
• Gain insights into the implementation status of the AI Act in Cyprus
• Stay informed about European developments and regulatory updates
• Understand the mandates of key EU bodies such as the EDPB, EDPS, and the AI Office
• Apply practical guidance for using AI tools in compliance with GDPR
• Anticipate challenges and learn strategies to overcome them
• Prepare for future regulatory changes impacting AI and data protection

Training Outline

• AI Act & GDPR – A Relationship of Complementarity
• Territorial And Material Scope of The Two Acts
• Key Players of Each Act
• General Obligations of The Key Players
• AI Act & GDPR Interplay – Three Possible Scenarios
• Relevant Core GDPR Provisions
• Relevant Core AI Act Provisions
• Requirements for Providers of High-Risk AI Systems
• Challenges While Using AI Tools
• Overcoming These Challenges – Practical Guidance
• Implementation Stage of AI Act in Cyprus
• Developments in Europe
• The Mandate of European Data Protection Board (EDPB)
• EDPB Work on AI Up to Now
• EDPB Opinion 28/2024
• European Data Protection Supervisor (EDPS) Role
• The Mandate of Artificial Intelligence (AI) Office
• Data Protection Authorities (DPAs) In Relation to AI Act

Who Should Attend

The programme is ideal for:

• Regulatory Compliance Officers
• Chief Legal Officers / Legal Advisors
• Chief Data Officers
• Internal ICT Specialists
• National Supervisors
• Data Protection Professionals
• AI Governance Leads / Risk Managers
• Technology Consultants working with regulated entities

Training Style

The programme is designed to provide professionals with a comprehensive overview of the relationship between AI ACT and GDPR, combining theoretical insights delivered through a PowerPoint presentation with practical examples. The training methodology is both instructor-led and participant-centred, encouraging active engagement through questions and the sharing of perspectives and professional experiences.

CPD Recognition

This programme may be approved for up to 4 CPD units in GDPR. Eligibility criteria and CPD Units are verified directly by your association, regulator or other bodies which you hold membership.

The course has been approved and verified by the Cyprus Bar Association (CyBAR). The Summary of CyBAR’s Updated CPD Guidelines Based on the Operational Framework of the Cyprus Bar Association (CBA) Academy can be found here.

In-house Training

For groups within the same organisation, this course may be customized to meet any specific needs and delivered in-house.