Skip to main Content

GDPR - Certified Information Privacy Professional and Technologist prep course

  • Course Code CIPPE-CIPT
  • Duration 4 days

Course Delivery

Additional Payment Options

  • GTC 55 inc. VAT

    GTC, Global Knowledge Training Credit, please contact Global Knowledge for more details

Public Classroom Price

£2,795.00

excl. VAT

Request Group Training Add to Cart

Course Delivery

This course is available in the following formats:

  • Public Classroom

    Traditional Classroom Learning

  • Virtual Learning

    Learning that is virtual

Request this course in a different delivery format.

Course Overview

Top

Course Description:

In this course you will gain foundational knowledge on both broad and global concepts of privacy and data protection laws and practice. You will learn common principles and approaches to privacy as well as understand the major privacy models employed around the globe. An introduction to information security concepts and information security management and governance will be covered including frameworks, controls, and identity and access management. You will also learn about online privacy as it relates to using personal information on websites and other internet-related technologies.

This course delves into the context of European (GDPR) data protection law: origins, institutions and legislative framework; data protection concepts, principles and application, including processing criteria, obligations, data subject rights, confidentiality and security, notification requirements, international data transfers, and supervision and enforcement; and European data protection practices related to employment, surveillance, direct marketing and outsourcing.

You will also learn the need and importance for privacy in the IT environment with impacts such as regulatory activities, security threats, advances in technology and the proliferation of social networks. This course will provide an introduction to privacy laws, regulations, and standards impacting privacy in IT and the risks inherent in the IT environment. You will also learn about the importance of personally identifiable information and methods for ensuring its protection.

The CIPP/E and CIPT designations are accredited under the internationally recognized ANSI/ISO standard 17024:2012, an acknowledgement of the quality and integrity of the programme.

This four-day programme covers the principals of information privacy, principles of data protection in Europe and principles of privacy in technology.

CIPPE-CIPT course includes:

- Exam voucher

- Textbooks (ebook): European Data Protection: Law and Practice; Privacy in Technology: Standards and Practices for Engineers and Security and IT & Introduction to IT Privacy: A Handbook for Technologists

- Participant Guide

- Sample Questions

- 1 Year IAPP Membership

Course Schedule

Top
    • Delivery Format: Virtual Learning
    • Date: 03-06 March, 2025
    • Location: Virtual

    £2,795.00

    • Delivery Format: Virtual Learning
    • Date: 09-12 June, 2025
    • Location: Virtual

    £2,795.00

    • Delivery Format: Virtual Learning
    • Date: 27-30 October, 2025
    • Location: Virtual

    £2,795.00

Target Audience

Top

Individuals who need a foundational understanding of information privacy and data protection in an IT environment. Those individuals interested in pursuing CIPP/E and CIPT certifications.

Data Protection Officers

IT Managers and Administrators

Records Managers

System Developers

IT Security specialist

Anyone who builds and develops IT systems

Course Content

Top

Days 1 and 2 are broken into eleven modules:

 

Module 1: Data Protection Laws

Introduces key European data protection laws and regulatory bodies, describing the evolution toward a Harmonised European Legislative Framework.

Module 2: Personal Data

Defines and differentiates between types of data-including personal, anonymous, pseudo-anonymous and special categories.

Module 3: Controllers and Processors

Describes the roles and relationships of controllers and processors.

 

Module 4: Processing Personal Data

Defines data processing and GDPR processing principles, Explains the application of the GDPR and outlines the legitimate bases for processing personal data.

Module 5: Information provision

Explains controller obligations for providing information about data processing activities to data subjects and Supervisory Authorities.

Module 6: Data Subjects 'Rights

Describes data subjects' rights, applications of rights and obligations controller and processor.

Module 7: Security or Processing

Discusses considerations and duties of controllers and processors for Ensuring security of personal data and providing notification of data breaches.

Module 8: Accountability

Investigates accountability requirements, data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.

 

Module 9: International Data Transfers

Outlines options and obligations for transferring data outside the European Economic Area, Decisions adequacy and appropriateness safeguards and derogations.

 

Module 10: Super Visions and Enforcement

Describes the role, powers and procedures or Supervisory Authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.

 

Module 11: Compliance

Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, employers-including processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.

Day 3
Module 1: Fundamentals of Information Privacy

Unit 1: Common Principles and Approaches to Privacy

This unit includes a brief description of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.

Unit 2: Jurisdiction and Industries

This unit introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and by industry sectors.

Unit 3: Information Security: Safeguarding Personal Information

This unit presents introductions to information security, including definitions, elements, standards, and threats/vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography, and identity and access management (IAM).

Unit 4: Online Privacy: Using Personal Information on Websites and with Other Internet-related Technologies

This unit discusses the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication identification and data collection. Additional topics include children’s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing and mobile devices.

Day 4
Module 2: Privacy in Technology

Unit 1: Understanding the Need for Privacy in the IT Environment

This unit describes the impact which regulatory activities, security threats, advances in technology and the increasing proliferation of social networks have on IT departments.

Unit 2: Core Privacy Concepts

This unit discusses how developing information lifecycle plans, data identification and classification systems, and data flow diagrams will make privacy compliance more attainable.

Unit 3: Regulations and Standards Impacting Privacy in IT

This unit introduces privacy laws, regulations and standards that can help IT professionals design better privacy programmes and systems to handle personal information throughout the data lifecycle.

Unit 4: Privacy in Systems and Applications

This unit develops an understanding of the risks inherent in the IT environment and how to address them.

Unit 5: Online Privacy Issues

This unit presents information about online threats, threat prevention and the role of IT professionals to ensure proper handling of user data.

Unit 6: De-identifying and Anonymising Personally Identifiable Information

This unit describes the importance of personally identifiable information and methods for ensuring its protection.

Unit 7: Cloud Computing

This unit discusses privacy and security concerns associated with cloud services, and standards that exist to advise on their use.

.

Course Prerequisites

Top
None

Test Certification

Top
IAPP Certified Information Privacy Professional and Technologist Exam
Cookie Control toggle icon