Information Technology

Certified Information Privacy Professional (CIPP/E)

Instructor-Led 11 Agenda

What You'll Learn

The General Data Protection Regulation (GDPR) took effect in 2018. Are you in compliance?

There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for data protection professionals with the right training and education.

Achieving a CIPP/E credential shows you have the comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe—and to take advantage of the career opportunity this sweeping legislation represents.

The Certified Information Privacy Manager (CIPM) credential provides the practical day-to-day information to lead an organisation’s data protection programme. Adding the CIPM to your CIPP/E puts you at the forefront of ensuring you are ready for the GDPR.

Description

The General Data Protection Regulation (GDPR) took effect in 2018. Are you in compliance? There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for data protection professionals with the right training and education. Achieving a CIPP/E credential shows you have the comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe—and to take advantage of the career opportunity this sweeping legislation represents. The Certified Information Privacy Manager (CIPM) credential provides the practical day-to-day information to lead an organisation’s data protection programme. Adding the CIPM to your CIPP/E puts you at the forefront of ensuring you are ready for the GDPR.

Who Should Attend

Data Protection Officers Data Protection Lawyers Records Managers Information Officers Compliance Officers Human Resource Officers Anyone who uses, processes and maintains personal data

Course Overview

The General Data Protection Regulation (GDPR) took effect in 2018. Are you in compliance?

There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for data protection professionals with the right training and education.

Course Agenda

11 Title

Course Agenda 11

Lesson Id	Title	Description
1	Data protection laws	Key European data protection laws and regulatory bodies<br />Evolving toward a harmonised legislative framework
2	Personal Data	Understanding and differentiating between types of data as defined by the GDPR<br />Personal, anonymous, pseudonymous and special categories
3	Controllers and Processors	Roles and relationships of controllers and processors as defined by the GDPR
4	Processing Personal Data	Data processing and GDPR processing principles<br />Applying the GDPR<br />Legal grounds for processing personal data
5	Data subject rights	Data subject rights<br />Applying rights<br />Controller and processor obligations
6	Information provision obligations	Controller obligations for providing information about data processing activities to data subjects<br />Supervisory authorities as set out in the GDPR
7	Cross-border data transfers	Options and obligations under the GDPR for transferring data outside the European Economic Area<br />Adequacy decisions<br />Safeguards and derogations
8	Compliance considerations	Applying European data protection laws<br />Legal bases and compliance requirements for processing personal data in practice<br />Processing employee data<br />Surveillance<br />Direct marketing<br />Internet technology and communications
9	Security of processing	Considerations and duties of controllers and processors for ensuring security of personal data<br />GDPR specifications for providing notification of data breaches
10	Accountability	Accountability requirements<br />Data protection management systems<br />Data protection impact assessments<br />Data protection policies<br />Role of the data protection officer
11	Supervision and enforcement	Role, powers and procedures of supervisory authorities<br />Composition and tasks of the European Data Protection Board<br />Role of the European Data Protection Supervisor<br />Remedies, liabilities and penalties for noncompliance as set out in the GDPR

Data protection laws

Key European data protection laws and regulatory bodies
Evolving toward a harmonised legislative framework

Personal Data

Understanding and differentiating between types of data as defined by the GDPR
Personal, anonymous, pseudonymous and special categories

Controllers and Processors

Roles and relationships of controllers and processors as defined by the GDPR

Processing Personal Data

Data processing and GDPR processing principles
Applying the GDPR
Legal grounds for processing personal data

Data subject rights

Data subject rights
Applying rights
Controller and processor obligations

Information provision obligations

Controller obligations for providing information about data processing activities to data subjects
Supervisory authorities as set out in the GDPR

Cross-border data transfers

Options and obligations under the GDPR for transferring data outside the European Economic Area
Adequacy decisions
Safeguards and derogations

Compliance considerations

Applying European data protection laws
Legal bases and compliance requirements for processing personal data in practice
Processing employee data
Surveillance
Direct marketing
Internet technology and communications

Security of processing

Considerations and duties of controllers and processors for ensuring security of personal data
GDPR specifications for providing notification of data breaches

Accountability

Accountability requirements
Data protection management systems
Data protection impact assessments
Data protection policies
Role of the data protection officer

Supervision and enforcement