U.S. Private-sector Privacy (CIPP/US)

U.S. Private-Sector Privacy CIPP/US provides an overview of data protection laws and regulations in the U.S and an understanding of the legal requirements for the responsible transfer of sensitive personal data to/from the U.S., the EU and other jurisdictions. The U.S. Private-Sector Privacy CIPP/US program was the first professional certification ever to be offered in information privacy. The CIPP/US credential demonstrates a strong foundation in U.S. privacy laws and regulations.

The content of the U.S. Private-Sector Privacy CIPP/US courses is integral to broadening your knowledge, educating your privacy team, and put you on the path to obtaining your privacy certifications.

Course Outline:

• Module 1: Foundations of privacy and data protection
  Discusses the modern history of privacy and data protection, introduces fair information practices and types of personal information, and gives an overview of data protection roles and privacy protection models.
• Module 2: Comprehensive privacy and data protection laws
  Provides an overview of both international and state comprehensive privacy laws with extraterritorial scope and explores options for international data transfers.
• Module 3: U.S. legal framework
  Reviews the structure and sources of U.S. law and relevant legal terms and introduces governmental bodies that have privacy and information security authority in the U.S.
• Module 4: Enforcement of U.S. privacy and security laws
  Distinguishes between criminal and civil liability; presents theories of legal liability; and describes the enforcement powers, responsibilities, and evolving priorities of government bodies such as the Federal Trade Commission and state attorneys general.
• Module 5: Information management from a U.S. perspective
  Examines data classification and data flow management and explores the role of the privacy professional within organizations, including the development of a privacy program, accountability, employee training, privacy policies and notices, management of user preferences and requests and third-party vendors, and the mitigation of online privacy risks.
• Module 6: Government and court access to private-sector information
  Explores rules and regulations on intercepting communications, including how the laws have evolved and how government agencies and private companies work collaboratively with law enforcement to improve cybersecurity.
  The training also outlines laws that ensure rights to financial privacy; discusses privacy issues related to litigation, including electronic discovery, redaction and protective orders; and briefly compares U.S. discovery rules to foreign laws.
• Module 7: State data privacy and security laws
  Compares federal and state authority; identifies state laws that impact privacy and data security, data subject rights, and privacy notice requirements; discusses state cookie and online tracking regulations; the use of artificial intelligence technologies and biometric information and laws governing data retention and destruction; outlines the scope of state data breach notification laws; and highlights key elements and major differences in state laws.
• Module 8: Telecommunications and marketing
  Explores rules and regulations of telecommunications entities, reviews laws that govern telecommunications and marketing, and briefly discusses how privacy is addressed in the digital advertising realm.
• Module 9: Health care
  Describes privacy laws in health care, including the major components of HIPAA and the development of the Genetic Information Non-Discrimination and Health Information Technology for Economic and Clinical Health acts, and outlines privacy protections mandated by other significant health care laws.
• Module 10: Children’s privacy
  Discusses the Children’s Online Privacy Protection Act and state statutes that regulate children’s privacy outlines privacy rights and protections under the Family Education Rights and Privacy Act, and describes recent amendments provided by the Protection of Pupil Rights Amendment and Every Student Succeeds Act. Also explores education technology and privacy.
• Module 11: Financial privacy
  Outlines the goals of financial privacy laws; highlights key concepts of Fair Credit Reporting, Fair and Accurate Credit Transactions, and Gramm-Leach-Bliley acts; and discusses the Red Flags Rule, the Disposal Rule, Dodd-Frank, online and mobile banking, and anti-money laundering laws.
• Module 12: Privacy in the workplace
  Describes federal laws that regulate and protect employee privacy and prohibit discrimination; examines the life cycle of
  employee privacy, including background screening, employee monitoring, investigating misconduct and termination; and
  outlines antidiscrimination laws.

CLASS MATERIALS INCLUDE:

• Two full days of training
• Electronic and hardcopy version of the textbook and the participant guide
• A 1-year IAPP membership with first class (applied to renewal for current IAPP members)
• Voucher to sit for the certification exam
• Voucher for a Certification Study Group*
• Optional refresher course should you fail the IAPP exam **

* Certification Study Group voucher must be used within three months of taking the course.

** The IAPP exam must be taken within three months of completion of the class. Refresher course must be taken within three months of completing the IAPP exam.

*** 1 Year Membership valid with first course taken with Privacy Ref

Classes may be rescheduled up to 10 business days before the start date at no charge. Cancellations receive a credit for a future class.