This two-day training encompasses pan-European and national data protection laws, key data protection terminology and practical concepts concerning the protection of personal data and trans-border data flows.
The CIPP/E program was developed by the International Association of Privacy Professionals (IAPP), which is the world’s largest comprehensive global information privacy community and resource. The CIPP/E certification holds accreditation under ISO 17024: 2012.
Are you GDPR-ready?
The General Data Protection Regulation (GDPR) takes effect in 2018, are you ready for it? Among its mandates is the requirement to appoint a knowledgeable Data Protection Officer (DPO) tasked with monitoring compliance, managing internal data protection activities, training data processing staff, conducting internal audits and more. There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for data protection professionals with the right training and education.
Achieving a CIPP/E credential shows you have the comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe—and to take advantage of the career opportunity this sweeping legislation represents.
Add a CIPM credential to the CIPP/E and you’ll be uniquely equipped to fulfill the DPO requirements of the GDPR. The CIPP/E relates to the knowledge a DPO must have concerning the European legal framework of the legislation, and the CIPM provides theoretical aspects necessary to lead an organization’s data protection policy.
Module 1: Fundamentals of Information Privacy
Unit 1: Common Principles and Approaches to Privacy
This unit includes a brief discussion about the modern history of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.
Unit 2: Jurisdiction and Industries
This unit introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and by industry sectors.
Unit 3: Information Security: Safeguarding Personal Information
This unit presents introductions to information security, including definitions, elements, standards, and threats/vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography, and identity and access management (IAM).
Unit 4: Online Privacy: Using Personal Information on Websites and with Other Internet-related Technologies
This unit discusses the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication identification and data collection. Additional topics include children’s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing, and mobile devices.
Module 2: European Privacy
Unit 1: Introduction to European Data Protection
This unit introduces the origins and historical context for privacy in Europe, the European regulatory institutions and the legislative framework for current EU data protection law at both the EU and state level.
Unit 2: European Data Protection Law and Regulation
This unit takes an in-depth look at data protection concepts, application of the law, data protection principles, legitimate processing criteria, information provision obligations, data subject rights, confidentiality and security, notification requirements, international data transfers, and supervision and enforcement.
Unit 3: Compliance with European Data Protection Law and Regulation
This unit examines the employment relationship, surveillance activities, marketing activities, internet technology and communications, and outsourcing.
Module 1: Data Protection Laws - Introduces key European data protection laws and regulatory bodies, describing the evolution toward a Harmonized European Legislative Framework.
Module 2: Personal Data - Defines and differentiates between types of data-including personal, anonymous, pseudo-anonymous and special categories.
Module 3: Controllers and Processors - Describes the roles and relationships of controllers and processors.
Module 4: Processing Personal Data - Defines data processing and GDPR processing principles, Explains the application of the GDPR and outlines the legitimate bases for processing personal data.
Module 5: Information provision - Explains controller obligations for providing information about data processing activities to data subjects and Supervisory Authorities.
Module 6: Data Subjects 'Rights - Describes data subjects' rights, applications of rights and obligations controller and processor.
Module 7: Security or Processing - Discusses considerations and duties of controllers and processors for Ensuring security of personal data and providing notification of data breaches.
Module 8: Accountability - Investigates accountability requirements, data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.
Module 9: International Data Transfers - Outlines options and obligations for transferring data outside the European Economic Area, Decisions adequacy and appropriateness safeguards and derogations.
Module 10: Super Visions and Enforcement - Describes the role, powers and procedures or Supervisory Authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.
Module 11: Compliance - Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, employers-including processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.
Individuals who need a foundational understanding of information privacy and data protection and those interested in pursuing CIPP/E certification.
Certified Information Privacy Professional – Europe (CIPP/E)