The CIPP/E training gives you a comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe. This training is an opportunity to learn about critical privacy concepts that are also integral to the CIPP/E exam. While not purely a ‘test prep’ course, this training is appropriate for professionals who plan to certify, as well for those who want to deepen their data protection knowledge. Both the training and the exam are based on the same body of knowledge.

This course covers the principles of data protection in Europe, the essential pan-European and national data protection laws, as well as industry-standard best practices for compliance with these laws.

The CIPPE training course includes:

• Exam voucher
• Textbook (ebook): European Data Protection: Law and Practice
• Participant Guide
• Sample Questions
• 1 Year IAPP Membership

The CIPP/E – Principles of Data Protection in Europe course covers the essential pan-European and national data protection laws, as well as industry-standard best practices for corporate compliance with these laws. Those taking this course will gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.

The training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Professional/Europe (CIPP/E) certification program.

Module 1: Data protection laws

• Introduces key European data protection laws and regulatory bodies, describing the evolution toward a harmonised legislative framework.

Module 2: Personal data

• Defines and differentiates between types of data as defined by the GDPR, including personal, anonymous, pseudonymous and special categories.

Module 3: Controllers and processors

• Describes the roles and relationships of controllers and processors as defined by the GDPR.

Module 4: Processing personal data

• Defines data processing and GDPR processing principles, explains the application of the GDPR and outlines the legal grounds for processing personal data.

Module 5: Data subject rights

• Describes data subject rights, applications of rights, and controller and processor obligations as set out in the GDPR.

Module 6: Information provision obligations

• Explains controller obligations for providing information about data processing activities to data subjects and supervisory authorities as set out in the GDPR.

Module 7: Cross-border data transfers

• Outlines options and obligations under the GDPR for transferring data outside the European Economic Area, including adequacy decisions and appropriate safeguards and derogations.

Module 8: Compliance considerations

• Discusses the applications of European data protection laws, legal bases and compliance requirements for processing personal data in practice, including employers processing employee data, surveillance, direct marketing, and internet technology and communications.

Module 9: Security of processing

• Discusses considerations and duties of controllers and processors for ensuring the security of personal data and GDPR specifications for providing notification of data breaches.

Module 10: Accountability

• Investigates accountability requirements, including data protection management systems, data protection impact assessments, data protection policies and the role of the data protection officer.

Module 11: Supervision and enforcement

• Describes the role, powers and procedures of supervisory authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for noncompliance as set out in the GDPR.

Those involved in:

• Data Protection Officers
• Data Protection Lawyers
• Records Managers
• Information Officers
• Compliance Officers
• Human Resource Officers
• Anyone who uses, processes and maintains personal data

• None