CIPP/US and CIPM Certification Training Boot Camp
Infosec’s four-day authorized CIPP/US and CIPM boot camp provides privacy professionals with both essential knowledge and understanding of important U.S. laws, regulations and enforcement models as well as information on the development, implementation and management of privacy policies and frameworks.
Earn your CIPP/US and CIPM, guaranteed!
- Exam Pass Guarantee
- 100% Satisfaction Guarantee
- CIPP/US and CIPM exam vouchers
- One year IAPP membership
- Unlimited CIPP/US and CIPM practice exam attempts
- Four days live, expert CIPP/US and CIPM Â instruction (live online or in-person)
- Immediate access to Infosec Skills from the minute you enroll to 90 days after your boot camp
- Learn by doing with 100s of additional hands-on courses and labs
- 90-day access to all boot camp video replays and materials
- Knowledge Transfer Guarantee
CIPP/US and CIPM certification details
The IAPP CIPP/US was launched in 2004 as the first professional certification in information privacy and remains the preeminent certification in the field of privacy. The CIPP/US credential demonstrates a strong foundation in U.S. privacy laws and regulations and an understanding of the legal requirements for the responsible transfer of sensitive personal data to/from the U.S., the EU and other jurisdictions.
The IAPP CIPM was launched in 2013 as the first and only certification in privacy program management. It was developed in response to the overwhelming demand to collect and collate common practices for managing privacy operations. The CIPM body of knowledge is comprised of two domains: privacy program governance and privacy program operational life cycle.
Training overview
This course is designed to prepare you for both the Certified Information Privacy Professional/United States (CIPP/US) and Certified Information Privacy Manager (CIPM) certification exams.
The CIPP/US certification is designed for privacy and compliance officers as well as other professionals in privacy and data protection roles with a focus on U.S. privacy laws and regulations. You will learn about cross-sector limits on the collection and use of data and about specific regulations for the medical, financial, education, telecommunications and marketing sectors. The course also covers laws governing access to private information by law enforcement and national security agencies, issues related to workplace privacy and important state privacy laws.
The CIPM certification is designed to provide privacy managers, compliance officers, and other professionals in privacy and data protection roles with comprehensive knowledge and understanding of privacy and data protection practices in the development, measurement and improvement of a privacy program. The course covers organizational-level privacy program governance, development, implementation and measurement of a privacy program framework as well as the application of the privacy operational life cycle.
What you'll learn
- The U.S. legal system: definitions, sources of law and the U.S. sectoral model for privacy enforcement
- U.S. federal laws for protection of personal data: FCRA and FACTA, HIPAA, GLBA and COPPA
- U.S. federal regulation of marketing practices: TSR, DNC, CAN-SPAM, TCPA and JFPA
- U.S. state data breach notification: California SB-1386 and select state laws
- Regulation of privacy in the U.S. workplace: FCRA, EPP, ADA and ECPA plus best practices for privacy and background screening, employee testing, workplace monitoring, employee investigation and termination of employment
- Organizational privacy concerns, including creating a company vision, structuring the privacy team and communicating with stakeholders
- Developing and implementing a privacy program framework
- Measuring performance
- The privacy operational life cycle
Who should attend
- Chief privacy officers (CPOs) and other senior information management professionals in both the U.S. public and private sectors or those employed by any organization with business or policy interests in the U.S.
- Privacy managers, legal compliance officers and risk managers
- Members of a privacy or compliance team
- Intermediate-level privacy professionals and entry-level candidates who are transitioning from non-privacy roles or who are entirely new to the privacy profession
- Information management professionals in the U.S. financial services, healthcare or telecommunications industries who seek to broaden their expertise into a general information privacy scope
- Corporate managers who are responsible for privacy within their teams, such as human resources, procurement, marketing and customer relations
- Non–privacy professionals who serve or support a privacy or compliance team and who need to achieve a consistent level of privacy education
- Information security professionals (CISO, CISSP)
- Information auditing and IT governance professionals (CISA, CISM)
Everything you need to earn your CIPP/US and CIPM
- Exam Pass Guarantee
- 100% Satisfaction Guarantee
- CIPP/US and CIPM exam vouchers
- One year IAPP membership
- 4 days live, expert CIPP/US and CIPM Â instruction (live online or in-person)
- Immediate access to Infosec Skills from the minute you enroll to 90 days after your boot camp
- Learn by doing with 100s of additional hands-on courses and labs
- 90-day access to all boot camp video replays and materials
- Knowledge Transfer Guarantee
Exam Pass Guarantee
We guarantee you’ll pass your exam on the first attempt. Learn more.Â
CIPP/US and CIPM training schedule
Infosec’s CIPP/US and CIPM training is more than just a boot camp. We support you before, during and after your live training to ensure you’re fully prepared for your exam — and get certified on your first attempt.
-
Before your boot camp
-
Start learning now. You’ll get immediate access to all the content in Infosec Skills the moment you enroll. Prepare for your live boot camp, uncover your knowledge gaps and maximize your training experience.
-
-
During your boot camp
-
Day 1: U.S. laws, models and collecting data
- Course introduction
- Structure of U.S. law and enforcement models
- Common privacy principles
- U.S. law sources, definitions and authorities
- Legal liability in the U.S.
- U.S. approach to protecting privacy and security of information
- Regulating collection and use of data in the private sector
- Federal trade commission privacy and security enforcement actions
- HIPAA and other healthcare privacy regulations
- Privacy in the financial sector
- FERPA (education)
- Privacy protection laws for telecommunications and marketing
Day 2: Access, privacy and state laws
- Access to private information by government and courts
- Law enforcement access to financial data and communications
- Laws related to national security
- Privacy issues in civil litigation
- Workplace privacy
- General workplace privacy concerns
- Human resources management
- Relevant U.S. agencies and laws
- Employee background screening
- Employee monitoring and investigations
- Employee termination
- State privacy laws
- Federal vs. state authority
- Marketing laws
- Financial data and data security laws
- Overview of data breach notification laws
Day 3: Privacy program governance
- Organizational level
- Creating a company vision
- Establishing a privacy program
- Structuring the privacy team
- Developing the privacy program framework
- Developing privacy policies, standards and guidelines
- Defining privacy program activities
- Implementing the privacy policy framework
- Communicating the privacy framework to stakeholders
- Ensuring alignment with laws and regulations
- Metrics
- Identifying the intended audience for metrics
- Defining reporting resources
- Defining privacy metrics
- Identifying systems/application collection points
Day 4: Privacy operational life cycle
- Stage I: Assess (privacy operational life cycle)
- Documenting the current baseline
- Processors and third-party vendor assessment
- Physical assessments
- Mergers, acquisitions and divestitures
- Conducting analysis and assessments
- Stage II: Protect (privacy operational life cycle)
- Data life cycle
- Information security practices
- Privacy by design
- Stage III: Sustain (privacy operational life cycle)
- Measure
- Align
- Audit
- Communicate
- Monitor
- Stage IV: Respond (privacy operational life cycle)
- Information requests
- Privacy incidents
-
-
After your boot camp
-
Your Infosec Skills access extends 90 days past your boot camp, so you can take additional time to prepare for your exam, get a head start on your next certification goal or start earning CPEs.
-
Free CIPP/US and CIPM training resources
Sign up