The CIPP/US Government course helps you prepare for the correspondent Certified Information Privacy Professional exam. IAPP training can provide your staff with the knowledge they need to help you meet your privacy program goals of reduced risk, improved compliance and more. The IAPP offers privacy and data protection training programs specifically designed to extend that knowledge to those on your team requiring a solid understanding of privacy principles and practices.
Founded in 2000, the IAPP is the worldâ€™s largest and most comprehensive privacy resource with a mission to define, support and improve the privacy profession globally.
Data is one of your most valuable assets. Every day it is being accessed, shared, managed and transferred by people in your organizationâ€”in all departments and at all levels. Unless your employees have a solid understanding of the considerations and challenges involved in managing data, you risk a data breach, diminished customer trust and possible enforcement action.
Principles of Privacy in the U.S. Government covers U.S. government privacy laws, regulations and policies specific to government practice, as well as those more broadly applicable to the public and private sectors in the U.S. Youâ€™ll gain an understanding of government-standard practices for privacy program development and management, privacy compliance and auditing, records management and agency reporting obligations for privacy.
The training is based on the body of knowledge for the IAPPâ€™s globally recognized Information Privacy Professional/U.S. Government (CIPP/G) certification program.
MODULE 1: Fundamentals of Information PrivacyÂ
- Unit 1: Common Principles and Approaches to Privacy. This unit includes a brief discussion of the modern history of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.
- Unit 2: Jurisdiction and Industries. This unit introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and industry sectors.
- Unit 3: Information Security. Safeguarding Personal Information This unit presents introductions to information security, including definitions, elements, standards and threats/ vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography and identity and access management (IAM).
- Unit 4: Online Privacy Using Personal Information on Websites and with Other Internet-related Technologies. This unit examines the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication and data collection. Additional topics include childrenâ€™s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing and mobile devices.
MODULE 2: U.S. Government PrivacyÂ
- Unit 1: U.S. Government Privacy Laws. This unit begins with a review of U.S. Government privacy definitions and principles, and then proceeds to examine two key laws for federal practice: The Privacy Act of 1974, including Systems of Records Notices (SORNs); and the E-Government Act, which includes Privacy Impact Assessments (PIAs). The unit then reviews other laws and regulations affecting government privacy practice, as well as laws that affect both the public and private sectors. It continues with discussions about privacy and the intelligence community, federal identity management and authentication, data sharing while protecting privacy and records management.
- Unit 2: U.S. Government Privacy Practices. This unit focuses on adequately protecting government information, leadership responsibilities, information security (including the National Institute of Standards and Technology (NIST) risk management framework), and â€śAppendix Jâ€ť reporting incidents involving personally identifiable information, compliance monitoring and audits and workforce management.
- Risk Management/ Compliance/Audit
- Database Administration
- Network Operations Center (NOC)
- Security Operations Center (SOC)
- Human Resources
- Sales and Marketing
- Executive Office