Data Protection and GDPR Level 3 for Managers and Business (VTQ)

64 videos, 2 hours and 55 minutes

Course Content


Video 30 of 64
2 min 50 sec
Want to watch this video? Sign up for the course or enter your email below to watch one free video.

Unlock This Video Now for FREE

This video is normally available to paying customers.
You may unlock this video for FREE. Enter your email address for instant access AND to receive ongoing updates and special discounts related to this topic.

Consent for Data Processing

Understanding Consent

Importance of Consent: Consent serves as one legal basis for data processing, offering individuals control over their data. However, it's vital to note that individuals can object or withdraw consent at any time, impacting data processing.

Key Considerations for Consent

  • Opt-In Requirement: Consent should require a clear, positive action to opt in. Pre-ticked or opt-out boxes are not compliant with GDPR.
  • Clear Information: Individuals must be clearly informed of what they are consenting to, ensuring transparency in data usage.
  • Separate Consent for Marketing: Marketing consent must be separate from other consents, providing individuals with the choice to opt in or out of receiving marketing materials.
  • Information Required: When requesting consent, provide details such as your organisation's name, purpose of data collection, data usage, and any third parties involved.
  • Withdrawal Option: Clearly state that individuals can withdraw consent at any time, and ensure it is easy for them to do so.


Record of Consent: Maintain records of who consented, when, how, and to what they consented. This helps demonstrate compliance with GDPR requirements.

Explicit Consent for Children

  • Child Consent: Children have the same data rights as adults. If consent is sought for children under 13, parental or guardian consent is necessary.
  • Express Confirmation: Explicit consent must be expressly confirmed in words, not through pre-selected options.