BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Avon LMC - ECPv6.15.20//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-ORIGINAL-URL:https://avonlmc.co.uk
X-WR-CALDESC:Events for Avon LMC
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:Europe/London
BEGIN:DAYLIGHT
TZOFFSETFROM:+0000
TZOFFSETTO:+0100
TZNAME:BST
DTSTART:20250330T010000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:+0100
TZOFFSETTO:+0000
TZNAME:GMT
DTSTART:20251026T010000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:+0000
TZOFFSETTO:+0100
TZNAME:BST
DTSTART:20260329T010000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:+0100
TZOFFSETTO:+0000
TZNAME:GMT
DTSTART:20261025T010000
END:STANDARD
BEGIN:DAYLIGHT
TZOFFSETFROM:+0000
TZOFFSETTO:+0100
TZNAME:BST
DTSTART:20270328T010000
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:+0100
TZOFFSETTO:+0000
TZNAME:GMT
DTSTART:20271031T010000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=Europe/London:20260408T123000
DTEND;TZID=Europe/London:20260408T150000
DTSTAMP:20260501T061833
CREATED:20260220T145341Z
LAST-MODIFIED:20260425T152140Z
UID:54099-1775651400-1775660400@avonlmc.co.uk
SUMMARY:DPO Programme - Module 1 (Virtual)
DESCRIPTION:Number of capacity: 15 \n  \nSummary \nThis focused online session establishes the legal and structural foundations of data controllership within a GP partnership. It examines Articles 4\, 5\, 6\, 9 and 24 UK GDPR and concentrates on partner-level accountability\, liability exposure and governance architecture.  \nThe emphasis is on evidential readiness — what a GP practice must be able to demonstrate under regulatory scrutiny.  \nA 2.5-hour doctrine-led governance session covering:  \n\nWho is legally the Data Controller in a GP partnership \nJoint controllership risk within PCN arrangements \nPublic task vs consent discipline \nSpecial category safeguards and APD requirements \nAccountability under Article 5(2) \nGovernance documentation architecture \nEnforcement reasoning and fine logic \n\nMapped to NHS DSPT Standards 1–3  \nCourse Content \n\nControllership in partnership structures \nLawful basis of discipline in primary care \nSpecial category safeguards and policy requirements \nAccountability and evidential burden \nGovernance reform blueprint for GP practices \n\nExpected Outcome \n\nDefine the legal responsibilities of a GP data controller \nDistinguish lawful basis misuse (consent vs public task) \nIdentify structural governance gaps within their practice 
URL:https://avonlmc.co.uk/event/dpo-programme-module-1-virtual/
LOCATION:Bristol
CATEGORIES:All Practice Staff
ORGANIZER;CN="ALMC Learning Hub":MAILTO:almclearninghub@almc.co.uk
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Europe/London:20260415T090000
DTEND;TZID=Europe/London:20260415T120000
DTSTAMP:20260501T061833
CREATED:20260220T145517Z
LAST-MODIFIED:20260420T090123Z
UID:54101-1776243600-1776254400@avonlmc.co.uk
SUMMARY:DPO Programme - Module 2 (Virtual)
DESCRIPTION:Number of capacity: 15 \n  \nSummary \nThis operational workshop provides a structured governance model for handling Subject Access Requests (SARs) and related data subject rights within General Practice.  \nIt is workflow-driven\, defensibility-focused\, and designed to reduce ICO escalation risk.  \nA 3-hour SAR lifecycle workshop covering:  \n\nValid SAR recognition and statutory clock start \nOne-month deadline discipline \nIdentity verification proportionality \nRecord search and extraction scope \nRedaction governance and documentation \nClinical harm exemption \nRectification vs annotation \nRefusal defensibility \nICO escalation pathway \nSAR governance model for GP practice \n\nMapped to NHS DSPT Standards 1–3.  \nCourse Content \n\nSAR validity and statutory timing \nSearch scope and extraction governance\nRedaction and exemption decision-making \nLitigation interface and escalation management \nSAR logging architecture and oversight model\n\nExpected Outcome \n\nOperate a compliant and defensible SAR workflow \nApply exemptions proportionately and lawfully\nMaintain SAR documentation capable of regulatory scrutiny 
URL:https://avonlmc.co.uk/event/dpo-programme-module-2-virtual/
LOCATION:Bristol
CATEGORIES:All Practice Staff
ORGANIZER;CN="ALMC Learning Hub":MAILTO:almclearninghub@almc.co.uk
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Europe/London:20260422T090000
DTEND;TZID=Europe/London:20260422T120000
DTSTAMP:20260501T061833
CREATED:20260220T145627Z
LAST-MODIFIED:20260420T081827Z
UID:54103-1776848400-1776859200@avonlmc.co.uk
SUMMARY:DPO Programme - Module 3 (Virtual)
DESCRIPTION:Number of capacity: 15 \n  \nSummary \nThis module examines breach governance under Articles 32–34 UK GDPR from a defensibility and regulatory reasoning perspective.  \nIt focuses on risk-to-rights assessment\, notification thresholds\, documentation architecture\, and board-level oversight.  \nA 3-hour governance session covering:  \n\nLegal definition of personal data breach \nRisk to rights and freedoms assessment model \n72-hour ICO notification threshold \nArticle 32 proportionality \nPatient notification test (Article 34) \nInsider misuse and supply chain exposure \nMitigation as regulatory credit \nBreach documentation architecture \nGovernance oversight model \n\nMapped to NHS DSPT Standards 1–3.  \nCourse Content \n\nBreach identification and classification \nRisk scoring and reportability decisions \nICO notification and patient communication \nMitigation and documentation defensibility \nBreach governance structure for GP practices \n\nExpected Outcome \n\nConduct structured breach risk assessments\nDetermine ICO notification thresholds confidently \nMaintain defensible breach documentation and escalation logs
URL:https://avonlmc.co.uk/event/dpo-programme-module-3-virtual/
LOCATION:Bristol
CATEGORIES:All Practice Staff
ORGANIZER;CN="ALMC Learning Hub":MAILTO:almclearninghub@almc.co.uk
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Europe/London:20260429T090000
DTEND;TZID=Europe/London:20260429T120000
DTSTAMP:20260501T061833
CREATED:20260220T145735Z
LAST-MODIFIED:20260420T081432Z
UID:54105-1777453200-1777464000@avonlmc.co.uk
SUMMARY:DPO Programme - Module 4 (Virtual)
DESCRIPTION:Number of capacity: 15 \n  \nSummary \nThis session integrates operational data protection mechanics into board-level assurance and strategic governance.  \nIt focuses on Article 30 Records of Processing (ROPA)\, DPO obligations\, documentation architecture\, and compliance maturity modelling.  \nA 3-hour strategic governance session covering:  \n\nROPA completeness and audit utility \nProcessor listing discipline \nDPO independence requirements \nCaldicott Guardian interface \nGovernance documentation hierarchy \nTraining assurance evidence \nCompliance maturity levels (1–4) \nBoard reporting structure \nIntegrated governance dashboard model \n\nMapped to NHS DSPT Standards 1–3.  \nCourse Content \n\nArticle 30 ROPA architecture and audit readiness\nDPO governance and independence\nDocumentation and asset ownership mapping\nCompliance maturity assessment\nAnnual assurance cycle design \n\nExpected Outcome \n\nMaintain an audit-ready ROPA\nDemonstrate DPO structural independence\nArticulate governance maturity at board level
URL:https://avonlmc.co.uk/event/dpo-programme-module-4-virtual/
LOCATION:Bristol
CATEGORIES:All Practice Staff
ORGANIZER;CN="ALMC Learning Hub":MAILTO:almclearninghub@almc.co.uk
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Europe/London:20260429T123000
DTEND;TZID=Europe/London:20260429T150000
DTSTAMP:20260501T061833
CREATED:20260220T145846Z
LAST-MODIFIED:20260420T081107Z
UID:54107-1777465800-1777474800@avonlmc.co.uk
SUMMARY:DPO Programme - Module 5 (Virtual)
DESCRIPTION:Number of capacity: 15 \n  \nSummary \nThis applied workshop guides delegates through the lifecycle of a Data Protection Impact Assessment (DPIA)\, focusing on defensible risk reasoning and mitigation discipline.  \nIt uses a structured case study to embed the requirements of Articles 35–36 into GP governance practice.  \nA 2.5-hour DPIA workshop covering:  \n\nDPIA trigger test (high-risk processing) \nProcessing description and data flow mapping \nNecessity and proportionality analysis \nRisk identification and structured scoring \nMitigation design and documentation \nDPO consultation recording \nResidual risk acceptance \nGovernance sign-off model \n\nMapped to NHS DSPT Standards 1–3.  \nCourse Content \n\nDetermining when a DPIA is legally required\nRisk identification and structured scoring model \nDesigning specific mitigation strategies \nRecording DPO advice and residual risk\nEmbedding DPIA into project lifecycle governance \n\nExpected Outcome \n\nConduct a legally defensible DPIA\nApply necessity and proportionality rigorously\nIntegrate DPIA governance into operational decision-making
URL:https://avonlmc.co.uk/event/dpo-programme-module-5-virtual/
LOCATION:Bristol
CATEGORIES:All Practice Staff
ORGANIZER;CN="ALMC Learning Hub":MAILTO:almclearninghub@almc.co.uk
END:VEVENT
END:VCALENDAR