European Data Protection
Principles of Data Protection in Europe covers the essential pan-European and national data protection laws, as well as industry-standard best practices for corporate compliance with these laws. Those taking this course will gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.
The training is based on the body of knowledge for the IAPP’s ANSI-accredited Certified Information Privacy Professional/Europe (CIPP/E) certification program.
Privacy Programme Management
Principles of Privacy Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high-performing privacy team. Those taking this course will learn the skills to manage privacy in an organisation through process and technology—regardless of jurisdiction or industry.
The Principles of Privacy Program Management training is based on the body of knowledge for the IAPP’s ANSI-accredited Certified Information Privacy Manager (CIPM) certification programme. Make a difference in your organization and in your career. The CIPM designation says that you’re a leader in privacy program administration and that you've got the goods to establish, maintain and manage a privacy program across all stages of its lifecycle.
Delivered in a modular format, this four day course covers
Days 1 & 2
Introduces key European data protection laws and regulatory bodies, describing the evolution toward a Harmonised European Legislative Framework.
Defines and differentiates between types of data-including personal, anonymous, pseudo-anonymous and special categories.
Describes the roles and relationships of controllers and processors.
Defines data processing and GDPR processing principles, Explains the application of the GDPR and outlines the legitimate bases for processing personal data.
Explains controller obligations for providing information about data processing activities to data subjects and Supervisory Authorities.
Describes data subjects' rights, applications of rights and obligations controller and processor.
Discusses considerations and duties of controllers and processors for Ensuring security of personal data and providing notification of data breaches.
Investigates accountability requirements, data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.
Outlines options and obligations for transferring data outside the European Economic Area, Decisions adequacy and appropriateness safeguards and derogations.
Describes the role, powers and procedures or Supervisory Authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.
Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, employers-including processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.
Days 3 & 4
Identifies privacy program management responsibilities, and describes the role of accountability in privacy program management.
Examines considerations for developing and implementing a privacy program, including the position of the privacy function within the organization, role of the DPO, program scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks.
Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.
Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.
Describes common types of privacy-related policies, outlines components and offers strategies for implementation.
Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure and the right to be forgotten.
Outlines strategies for developing and implementing privacy training and awareness programs.
Examines a holistic approach to protecting personal information through privacy by design.
Provides guidance on planning for and responding to a data security incident or breach.
Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance
There are no prerequisites for this course but attendees would benefit from a review of the materials on the IAPP SITE
1 years membership of the IAPP
Breakfast, Lunch, mid-morning and afternoon snacks, teas, coffees
Official Study Guides*
Official Participant Guides*
Official Exam Q&A's*
Both exam fees
* In electronic format for Live Online and hard copy for Classroom delegates
This course is suitable for aspiring Data Protection Officers, as well as Information Security Managers, Lawyers, Data Managers, Analysts and Risk Teams.
The IAPP's premier Data Protection training programme for aspiring Privacy Professionals.More Information
This is the Privacy Programme Management Training Course from the IAPP, leading to Certified Information Privacy Manager status.More Information
Certified Data Protection Officer Training, attracting 31 CPD hoursMore Information
The IECB's Data Protection Foundation course, attracting 13 CPD hoursMore Information
IECB's Official ISO 45001 Lead Implementer Training CourseMore Information
The IECB's Official ISO 37001 Lead Auditor Training Course & Exam PackageMore Information
The IECB's Official ISO 37001 Lead Implementer Training Course & exam PackageMore Information
The official Certified Information Privacy Technologist Training Course from the IAPPMore Information
The IECB's Official ISO 27701 Lead Implementer Training and Examination Course.More Information
Our 1 day workshop to help attendees understand their obligations for Data Protection. Aligned to the UK's Data Protection Act 2018 and the GDPR. Attracts 8 CPD hoursMore Information
Enhance your career by earning ISO 27701 Internal Auditor Certification - the standard of achievement for those who audit, monitor and assess information privacy technology, business systems and processes.More Information
The IECB Certified ISO 37301 Foundation training course presents the basic concepts of compliance and the requirements of ISO 37301 for a compliance management system (CMS).More Information
ISO 37301 is a Type A management system standard which sets out the requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining, and continually improving a compliance management system (CMS)More Information
The IECB Certified 37301 Lead Auditor training course enables you to develop the necessary competence to perform compliance management system (CMS) audits by applying widely recognized audit principles, procedures, and techniques.More Information
Join us for a 1 hour taster session to learn about the IAPP's flagship training courses, the CIPP/E and CIPMMore Information
The IAPP's recently launched 2 day AI Governance programme, designed for those responsible for implementing and gaining value in AI solutions.More Information
The IAPP's AI Governance programme, designed for those responsible for implementing and gaining value from AI solutions.More Information
ISO/IEC 42001 is the world’s first AI management system standard, providing valuable guidance for this rapidly changing field of technology. It addresses the unique challenges AI poses, such as ethical considerations, transparency, and continuous learningMore Information