Privacy Program Management (CIPM)

Privacy Program Management teaches you how to create and manage a privacy program. It gives you the tools to answer day-to-day questions about privacy operations. The CIPM is the world’s first and only certification in privacy program management. When you earn a CIPM, it shows that you know how to make a privacy program work for your organization.

The content of the courses is integral to broadening your knowledge, educating your privacy team, and put you on the path to obtaining your privacy certifications.

Course outline:

• Module 1: Introduction to privacy program management
  Identifies privacy program management responsibilities and describes the role of accountability in privacy program management.
• Module 2: Privacy program framework: Privacy governance
  Examines considerations for developing and implementing a privacy and data protection program, including the position of the privacy function, role of the data protection officer, program scope and charter, privacy strategy, privacy frameworks, and support and ongoing involvement of key functions.
• Module 3: Privacy program framework: Applicable laws and regulations
  Discusses the regulatory environment, common elements across jurisdictions, and strategies for aligning compliance with organizational strategy.
• Module 4: Privacy operational life cycle – Assess: Data assessments
  Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments, and vendor assessments.
• Module 5: Privacy operational life cycle – Protect: Protecting personal information
  Examines a holistic approach to protecting personal information through security controls, privacy by design, and an understanding of privacy risk models and frameworks, along with risks associated with the use of artificial intelligence.
• Module 6: Privacy operational life cycle – Protect: Policies
  Describes common types of privacy- and data protection-related policies, outlines components, and offers strategies for implementation.
• Module 7: Privacy operational life cycle – Sustain: Monitoring and auditing program performance
  Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.
• Module 8: Privacy operational life cycle – Sustain: Training and awareness
  Outlines strategies for developing and implementing privacy training and awareness programs.
• Module 9: Privacy operational life cycle – Respond: Data subject rights
  Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure.
• Module 10: Privacy operational life cycle – Respond: Data breach incident plans
  Provides guidance on planning for and responding to a data security incident or breach.

Class materials include:

• Two full days of training
• Electronic and hardcopy version of the textbook and participant guide
• A 1-year IAPP membership with first class (applied to renewal for current IAPP members)
• Voucher to sit for the certification exam
• Voucher for a Certification Study Group*
• Optional refresher course should you fail the IAPP exam **

* Certification Study Group voucher must be used within three months of taking the course.

** The IAPP exam must be taken within three months of completion of the class. Refresher course must be taken within three months of completing the IAPP exam.

*** 1 Year Membership valid with first course taken with Privacy Ref

Classes may be rescheduled up to 10 business days before the start date at no charge. Cancellations receive a credit for a future class.