Professional Certificate 10 Modules 107 Lessons

Digital Markets Legislation and Data Law (GDPR, DSA, DMA)

Description

Program summary

This online program provides a structured understanding of the European regulatory environment affecting digital products and platforms. You will connect GDPR’s data-lifecycle obligations with DSA’s platform accountability and transparency duties, and DMA’s competition-oriented requirements for large gatekeepers. Rather than memorizing legal text, you will develop a practical compliance mindset: risk-based decision making, documentation discipline, and cross-functional collaboration between product, legal, compliance, and operations.
Format: Delivered online. If a specific program includes live sessions, an on-campus visit, or any in-person component, this will be clearly stated on the program page.
What you will gain:
• Translate regulatory requirements into product and operational decisions
• Build a risk-based compliance approach (registers, checklists, control points)
• Create practical documentation templates and process maps
• Establish a shared language across product, legal, and compliance teams
Who should attend:
Product managers, legal/compliance professionals, privacy support roles, platform operations teams, and growth/ops teams working in regulated digital markets.
Course outline
1. GDPR essentials: principles, roles, lawful bases, data lifecycle
2. DSA: governance, transparency reporting, risk mitigation duties
3. DMA: gatekeepers, prohibited practices, enforcement logic
4. Compliance documentation: policies, records, audit trail, workflows
5. Scenario workshops: platform/product cases and decision frameworks
6. Roadmap: controls matrix, responsibilities (RACI), and action plan

Modules

10

What is included

Lessons

107

Review the module structure and lesson flow before enrollment.

Content sections

4

Review the sections below and open only the one you need. The summary panel on the side keeps the long explanation separate and readable.

Course Curriculum

Module roadmap

Review the module structure and lesson flow before enrollment.

Module 1

Foundations of Digital Regulation

9 Lessons

Module 2

GDPR: Core Principles and Scope

14 Lessons

Module 3

GDPR: Organisational and Technical Obligations

10 Lessons
Digital Markets Legislation and Data Law (GDPR, DSA, DMA)

Next step

Add to Cart

€ 149,00
Immediate access to the secure purchase flow.
Guided checkout flow for institutional and individual buyers.
A clear curriculum preview before checkout.

You can add the product to your cart and proceed to the payment step.

Certificate Preview

Sample certificate

Preview the institution-issued certificate style learners can expect after successfully completing the program.

CIT
Certificate Preview

What is included

Course Curriculum

Review the module structure and lesson flow before enrollment.

10 Modules 107 Lessons
1

The Digital Economy and the Case for Regulation

2

History of Internet Governance: From Self-Regulation to Law

3

Key Concepts: Personal Data, Platforms, Gatekeepers, and Intermediaries

4

The EU as a Global Regulatory Superpower: The Brussels Effect

5

Fundamental Rights Basis: Privacy as a Human Right in EU Law

6

The Regulatory Landscape: GDPR, DSA, DMA and How They Interrelate

7

Jurisdiction and Extraterritoriality in Digital Law

8

Regulatory Bodies: Data Protection Authorities, DSCs, and NCAs

9

Enforcement Architecture: Administrative, Civil, and Criminal Mechanisms

1

GDPR Origins: From Directive 95/46/EC to the General Data Protection Regulation

2

Material and Territorial Scope of the GDPR

3

Key Definitions: Personal Data, Processing, Controller, and Processor

4

The Six Lawful Bases for Processing Personal Data

5

Consent: Requirements, Withdrawal, and Practical Challenges

6

Legitimate Interests: The Balancing Test in Practice

7

Special Categories of Data: Sensitive Data and Biometrics

8

Data Subject Rights: Access, Rectification, and Erasure

9

Data Subject Rights: Portability, Restriction, and Objection

10

The Right Not to Be Subject to Automated Decision-Making

11

Transparency Obligations and Privacy Notices

12

Purpose Limitation and Data Minimisation Principles

13

Storage Limitation and Accuracy Principles

14

The Accountability Principle and Demonstrating Compliance

1

Data Protection by Design and by Default

2

Data Protection Impact Assessments (DPIA): When and How

3

Records of Processing Activities (ROPA)

4

The Role of the Data Protection Officer (DPO)

5

Controller-Processor Relationships and Data Processing Agreements

6

Joint Controllers: Liability and Responsibilities

7

Personal Data Breaches: Detection, Notification, and Documentation

8

International Data Transfers: Standard Contractual Clauses and BCRs

9

Schrems II and the Future of EU-US Data Transfers

10

GDPR Enforcement: Fines, Case Studies, and Lessons Learned

1

DSA Origins: Why the E-Commerce Directive Was No Longer Sufficient

2

Scope of the DSA: Who Is Covered and Who Is Not

3

The DSA Layered Obligations Framework: A Size and Risk-Based Approach

4

Intermediary Liability: The Hosting Safe Harbour and Its Limits

5

Notice and Action Mechanisms: Reporting Illegal Content

6

Trusted Flaggers and Out-of-Court Dispute Resolution

7

Transparency Obligations: Recommender Systems and Online Advertising

8

Prohibition on Dark Patterns and Targeted Advertising to Minors

9

Very Large Online Platforms (VLOPs): Definition and Additional Obligations

10

Systemic Risk Assessment and Mitigation for VLOPs

11

DSA Auditing, Transparency Reporting, and Data Access for Researchers

12

DSA Enforcement: The European Commission's Direct Supervisory Powers

1

DMA Origins: Why Competition Law Alone Was Not Enough

2

The Gatekeeper Concept: Quantitative and Qualitative Thresholds

3

The Designation Process: How a Company Becomes a Gatekeeper

4

Core Platform Services Covered by the DMA

5

Per Se Obligations: Article 5 Do's and Don'ts for Gatekeepers

6

Obligations Subject to Specification: Article 6 in Practice

7

Interoperability Requirements: Messaging and Data Portability

8

Self-Preferencing Prohibition: Search, App Stores, and Rankings

9

Bundling and Tying Restrictions Under the DMA

10

Data Access and Sharing Obligations for Gatekeepers

11

DMA Enforcement: Investigations, Fines, and Structural Remedies

12

DMA and GDPR Intersection: Data Portability and Consent Tensions

1

ePrivacy Regulation: Cookies, Direct Marketing, and Electronic Communications

2

NIS2 Directive: Cybersecurity Obligations for Digital Infrastructure

3

The EU AI Act: Risk-Based Regulation of Artificial Intelligence

4

Data Governance Act: Data Altruism and Data Intermediaries

5

Data Act: Access to and Use of IoT-Generated Data

6

Open Data and the PSI Directive

7

PSD2 and Open Banking: Financial Data in the Digital Single Market

8

Health Data: EHDS and the Special Status of Medical Information

9

Children's Data Protection: Age Verification and COPPA vs. GDPR

10

Sector Regulators and the Challenge of Coherent Enforcement

1

The US Approach: Sectoral Regulation vs. Comprehensive Federal Privacy Law

2

CCPA and CPRA: California as the US Privacy Standard-Bearer

3

The FTC's Role: Privacy Enforcement Without a Federal Privacy Law

4

UK GDPR and the UK Data Protection Act Post-Brexit

5

China's PIPL, DSL, and Cybersecurity Law: The State-Centric Model

6

India's Digital Personal Data Protection Act 2023

7

Brazil's LGPD and Latin American Privacy Frameworks

8

Adequacy Decisions: The GDPR Mechanism for International Transfers

9

Global Privacy Assembly and Convergence vs. Fragmentation

10

Data Localisation Laws: Sovereignty, Security, and Trade Tensions

1

Section 230 of the CDA: The Foundation of US Platform Immunity

2

Platform Liability Models: Passive Host vs. Active Publisher

3

Content Moderation at Scale: Legal Obligations and Editorial Discretion

4

Terrorist Content Online Regulation (TERREG)

5

UK Online Safety Act: A Duty of Care Approach to Online Harms

6

Algorithmic Accountability and the Limits of Automated Enforcement

7

Dominance and Market Power in Digital Markets: Google, Apple, Meta Cases

8

Merger Control in Digital Markets: Killer Acquisitions

9

Interoperability as a Regulatory Tool: Theory and Practice

10

Network Effects, Lock-In, and the Economics of Platform Regulation

1

Building a GDPR Compliance Programme: From Gap Analysis to Implementation

2

DSA and DMA Compliance Roadmap for Platforms

3

Privacy-Enhancing Technologies (PETs) in Regulatory Compliance

4

Vendor Management and Third-Party Risk in Data Law

5

Cross-Border Compliance: Managing Multi-Jurisdictional Obligations

6

Regulatory Sandboxes and Innovation-Friendly Compliance Approaches

7

Responding to Regulatory Investigations and Dawn Raids

8

Litigation Strategy: Data Subject Claims and Class Actions

9

The DPO in Practice: Independence, Conflicts of Interest, and Career Path

10

Compliance Metrics, Audit Programmes, and Board Reporting

1

The AI Act and GDPR: Overlaps, Gaps, and Tensions

2

Generative AI and Data Protection: Training Data, Copyright, and Consent

3

Algorithmic Accountability and Explainability Requirements

4

Digital Identity: eIDAS 2.0 and the EU Digital Wallet

5

Decentralised Technologies: Blockchain, Web3, and GDPR Compatibility

6

The Metaverse and Emerging Platform Regulation Challenges

7

Data Trusts and Collective Data Governance Models

8

Geopolitics of Data: US-EU-China Regulatory Competition

9

The Future of the Brussels Effect: Can the EU Model Go Global?

10

Careers in Digital Law and Regulation: Paths, Skills, and Opportunities

Program details

Content sections

Review the sections below and open only the one you need. The summary panel on the side keeps the long explanation separate and readable.

Click the Add to Cart button. Complete the purchase process by filling in the required information. Once your payment has been confirmed, your login credentials and access details will be sent to the email address you provided during registration. Use the information sent via email to log in to the learning platform and start the course immediately.
The programs are open to: University students, Recent graduates, Public and private sector employees, Engineers, technicians, and specialists, Managers and management candidates, Professionals seeking to advance their careers, Individuals looking to enhance their digital skills, Anyone interested in gaining competencies in a new field.
Participants who successfully complete the program will: Gain up-to-date knowledge and skills relevant to their field; Develop professional competencies in line with international standards; Adapt to digital transformation and the evolving requirements of the future workforce; Acquire new skills that support career development and professional growth; Receive a verifiable digital certificate documenting their learning achievements; Strengthen their commitment to lifelong learning and continuous professional development. Certificates are issued in digital format and can be verified online through the certificate verification system.
The training programs are offered in Turkish and English and are delivered entirely online. Participants who successfully complete the program will receive a digital certificate. No physical certificate or printed document will be issued or delivered. Upon completion of the application and registration process, access information and login credentials for the training platform will be sent to the email address provided during registration. Participants may access the platform using the credentials provided and follow all training activities online throughout the program.