The Certified Information Privacy Professional/United States (CIPP/US) program, developed by the International Association of Privacy Professionals (IAPP) - the world’s largest comprehensive global information privacy community and resource, was the first professional certification ever to be offered in information privacy. The CIPP/US credential demonstrates a strong foundation in U.S. privacy laws and regulations and understanding of the legal requirements for the responsible transfer of sensitive personal data to/from the U.S., the EU and other jurisdictions.

starstarstarstarstar

* Actual course outline may vary depending on offering center. Contact your sales representative for more information.

Learning Objectives

It will show the world that students know privacy laws and regulations and how to apply them, and that students know how to secure your place in the information economy. When students earn a CIPP credential, it means they’ve gained a foundational understanding of broad global concepts of privacy and data protection law and practice, including: jurisdictional laws, regulations and enforcement models; essential privacy concepts and principals; legal requirements for handling and transferring data and more.

1
  • Introduction to privacy

  • Modern history of privacy
    Introduction to personal information
    Overview of data protection roles
    Summary of modern privacy frameworks

2
  • Structure of U.S. law

  • Structure and sources of U.S. law and relevant terms
    Governmental bodies having privacy and information security authority

3
  • General Data Protection Regulation overview (GDPR)

  • High-level overview of the GDPR
    Significance of the GDPR to U.S. organizations
    Roles and responsibilities outlined in the law

4
  • California Consumer Privacy Act of 2018 (CCPA)

  • High-level overview of the newly passed California Consumer Privacy Act of 2018
    Scope
    Consumer rights
    Business obligations
    Enforcement

5
  • Enforcement of U.S. privacy and security laws

  • Distinguishing between criminal and civil liability
    Comparing federal and state authority
    Theories of legal liability
    Enforcement powers and responsibilities of government bodies, such as the FTC and state attorneys general

6
  • Information management from a U.S. perspective

  • Developing a privacy program
    Role of privacy professionals and accountability
    Employee training
    User preferences
    Managing vendors
    Data classification

7
  • Federal versus state authority

  • Differences between federal and state authority
    Preemption

8
  • Healthcare

  • Privacy laws in healthcare
    Major components of HIPAA
    Development of HITECH
    Privacy protections mandated by other significant healthcare laws

9
  • Financial privacy

  • Goals of financial privacy laws
    Key concepts of FCRA, FACTA and GLBA
    Red Flags Rule, Dodd-Frank and consumer protection laws

10
  • Education

  • Privacy rights and protections under FERPA
    Recent amendments provided by PPRA and NCLBA

11
  • Telecommunications and marketing

  • Rules and regulations of telecommunications entities
    Laws that govern marketing
    Addressing privacy in the digital advertising

12
  • Law enforcement and privacy

  • Privacy laws on intercepting communication
    Telecommunications industry and law enforcement
    Laws ensuring rights to financial privacy

13
  • National security and privacy

  • Rules and regulations on intercepting communication
    Evolution of the law
    Collaboration of government agencies and private companies to improve cybersecurity

14
  • Civil litigation and privacy

  • Privacy issues related to litigation
    Electronic discovery, redaction and protective orders
    U.S. discovery rules versus foreign laws

15
  • Legal overview of workplace privacy

  • Federal and state laws regulating and protecting employee privacy
    Federal laws prohibiting discrimination

16
  • Privacy before, during and after employment

  • Lifecycle of employee privacy
    Background screening
    Employee monitoring
    Investigating misconduct and termination
    Antidiscrimination laws
    'Bring your own device' policies

17
  • State data security laws

  • State laws impacting data security
    Social Security number use regulation
    Laws governing data destruction

18
  • Data breach notification laws

  • Scope of state data breach notification law
    Nine elements of state data breach notification laws
    Major differences in state laws

Audience

This course is ideal for Data Protection Officers, Data Protection Managers, Auditors, Legal Compliance Officers, Security Manager, Information Managers, or anyone involved with data protection processes and programs.

Language

English

Prerequisites

While there are no prerequisites for this course, please ensure you have the right level of experience to be successful in this training.

$2,855

Length: 2.0 days (16 hours)

Level:

Not Your Location? Change

Course Schedule:

Schedule select
06
Nov
Monday
8:00 AM PT -
4:00 PM PT
Available
Schedule select
15
Feb
Thursday
9:00 AM ET -
5:00 PM ET
Available
Schedule select
10
Jun
Monday
9:00 AM ET -
5:00 PM ET
Available
Loading...