CIPM Certified Information Privacy Manager

Accredited under ANSI/ISO standards 17024:2012, CIPM is the world’s first and only certification in privacy program management. When you earn a CIPM, it shows that you don’t just know privacy regulations—you know how to make it work for your organisation. In other words, you’re the go-to person for day-to-day operations when it comes to privacy.

Privacy Program Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high performing privacy team. Those taking this course will learn the skills to manage privacy in an organisation through process and technology – regardless of jurisdiction or industry.

Learning Outcomes:

• How to create a company vision
• How to structure the privacy team
• How to develop and implement a privacy program framework
• How to communicate to stakeholders
• How to measure performance
• The privacy program operational lifecycle
   

Who Should Attend:

The GDPR includes among its mandates the requirement to appoint knowledgeable DPOs (data protection officers) tasked with monitoring compliance, managing internal data protection activities, training data processing staff, conducting internal audits and more. There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for privacy professionals with the right training and education.

Course Contents:

• The CIPM certification is comprised of two domains:
• Domain 1: Privacy Program Governance
• Domain 2: Privacy Program Operational Life Cycle
• Domain 1
• Domain 1 provides a solid foundation for the governance of a privacy program and defines how the privacy program may be developed, measured and improved.
• 1. Organisation Level
• Create a company vision
• Establish a privacy program
• Structure the privacy team
• 2. Develop the Privacy Program Framework
• Develop organisational privacy policies, standards and/or guidelines
• Define privacy program activities
• 3. Implement the Privacy Policy Framework
• Communicate the framework to internal and external stakeholders
• Ensure continuous alignment to applicable laws and regulations to support the development of an organizational privacy program framework
• 4. Metrics
• Identify intended audience for metrics
• Define reporting resources
• Define privacy metrics for oversight and governance per audience
• Identify systems/application collection points
• Domain 2
• Domain 2 details the management and operations of the privacy program governance model within the context of the organisation’s privacy strategy. The Privacy Program Operational Life Cycle domain is built upon a common industry-accepted framework.
• 5. Assess Your Organisation
• Document current baseline of your privacy
• Processors and third-party vendor assessment
• Physical assessments
• Mergers, acquisitions and divestitures
• Conduct analysis and assessments, as needed or appropriate
• 6. Protect
• Data life cycle (creation to deletion)
• Information security practices
• Privacy by Design
• 7. Sustain
• Measure
• Align
• Audit
• Communicate
• Monitor
• 8. Respond
• Information requests
• Privacy incidents