Founded in 2000, the IAPP is the world’s largest and most comprehensive privacy resource with a mission to define, support and improve the Privacy profession globally.

Every organization has data protection needs.  Every day, we access, share and manage data across companies, continents and the globe. Knowing how to implement a privacy program is an invaluable skill that will help you protect your organization’s data—and take your career to the next level.

Privacy Program Management training is the premier course on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a privacy team.

CIPM course includes:

• Exam Voucher
• Textbook (ebook): Privacy Program Management: Tools for Managing Privacy Within Your Organization
• Participant Guide
• Sample Questions
• 1 Year IAPP Membership

Privacy Program Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high-performing privacy team. Those taking this course will learn the skills to manage privacy in an organization through process and technology—regardless of jurisdiction or industry.

Privacy Program Management training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Manager (CIPM) certification program.

MODULE 1: Introduction to privacy program management

Identifies privacy program management responsibilities, and describes the role of accountability in privacy program management.

MODULE 2: Privacy governance
Examines considerations for developing and implementing a privacy program, including the position of the privacy function within the organization, role of the DPO, program scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks.

MODULE 3: Applicable laws and regulations
Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.

MODULE 4: Data assessments
Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.

MODULE 5: Policies
Describes common types of privacy-related policies, outlines components and offers strategies for implementation.

MODULE 6: Data subject rights
Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure and the right to be forgotten.

MODULE 7: Training and awareness
Outlines strategies for developing and implementing privacy training and awareness programs.

MODULE8: Protecting personal information
Examines a holistic approach to protecting personal information through privacy by design.

MODULE 9: Data breach incident plans

Provides guidance on planning for and responding to a data security incident or breach.

MODULE 10: Measuring, monitoring and auditing program performance
Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.

• Data Protection Officers
• Data Protection Managers
• Auditors
• Legal Compliance Officers
• Security Manager
• Information Managers
• Anyone involved with data protection processes and programmes

• None