IAPP CIPP/US Learning Path

This comprehensive series of privacy courses helps prepare learners for the Certified Information Privacy Professional, United States (CIPP/US) certification exam. The CIPP/US exam is administered by the International Association of Privacy Professionals (IAPP).

15 hours, 32 minutes

Quick facts

About this learning path

  • courses

    100% online

  • Duration

    15 hours, 32 minutes

  • Assessment



The CIPP/US certification path provides important knowledge about privacy and law and prepares students to pass the CIPP/US exam and earn this leading privacy certification. Participants will learn about the US privacy environment, including general legal concepts and specific laws and regulations, government enforcement, private-sector collection and use of data, government collection of data, workplace privacy and state-specific laws.



CIPP/US Practice Exam

Assessment - 215 questions

Introducing privacy and the CIPP/US certification process

Course - 01:35:00

This course lays a foundation for the CIPP/US certification learning path. We talk about IAPP and the exam and what it covers. We also demystify law, regulation and privacy. Think of this as the 30,000-foot view of the forest before we start looking closely at the trees. You’ll also gain an appreciation of how important law, regulation and privacy are in your professional and personal life ... not to mention for passing the CIPP/US exam!
Introduction to the US privacy environment (BoK I)

Course - 04:03:00

The US privacy environment sets the stage and is an important domain. We will look at the foundations of US law, including government, laws and regulations and how they come to be and are enforced. We will dig into information management from this perspective, how it relates to data, privacy programs, incident response, training, international considerations and more.
Limits on private-sector collection and use of data (BoK II)

Course - 02:42:00

Laws and regulations limit how the private sector can collect, store, share and use data. Some rules apply broadly, some to specific sectors. We will review the role of the Federal Trade Commission (FTC) and rules for organizations in fields of healthcare (medical), financial, education, telecommunications, marketing and more.
Government and court access to private-sector information (BoK III)

Course - 01:36:00

The US has enacted special rules about how government can access data. We will look at law enforcement’s rules and how it impacts privacy, national security issues and civil litigation, as well as the balancing of a litigant’s need for information to prove their case versus privacy concerns.
Workplace privacy (BoK IV)

Course - 01:11:00

There are many rules and regulators that address workplace privacy, and organizations have multiple departments that need to work together to address employee privacy while simultaneously addressing other concerns such as information security.
State privacy laws (BoK V)

Course - 01:26:00

State laws on data disposal, data breach notification, cybersecurity and privacy have transformed our country’s approach to information governance. We explore the interesting relationship between federal and state law and examine the multitude of state laws that impact privacy and information systems.
Bringing it all together

Course - 01:13:00

There are five domains covered in the CIPP/US exam. Let’s review how they fit together, explore how important privacy has become for our professional and private lives and go through a checklist as you prepare for the certification exam.

Meet the author

John Bandler

John Bandler is a lawyer, consultant, speaker, teacher, and author in the areas of cybersecurity, cybercrime, privacy, investigations, and more. He is the founder of Bandler Law Firm PLLC and Bandler Group LLC, legal and consulting practices that help organizations and individuals with cybersecurity, the prevention and investigation of cybercrime, privacy, legal compliance, and more.

John has expertise in many subjects, holds a number of certifications, and is a prolific writer and speaker. He is the author of Cybersecurity for the Home and Office, a comprehensive guide to understanding and improving information security. His second book is Cybercrime Investigations, an extensive resource regarding the law, technology, process, and skills for the investigation of cybercrime. John has authored many articles on a range of topics, teaches students at the undergraduate, graduate, and law level, and provides training for professionals.

Before entering private practice, John served in government for more than twenty years as a prosecutor, police officer, and military officer. John was hired as an assistant district attorney at the New York County District Attorney’s Office by the legendary Robert M. Morgenthau, where he investigated and prosecuted the full range of offenses including traditional crime, cybercrime, the global trafficking of stolen data, and virtual currency money laundering. Before that, he served for eight years as a state trooper in the New York State Police, assigned to a busy patrol station providing full services to the local community. He also served in the Army Reserves.

The details

Learning path insights

How to claim CPEs

Should you complete this learning path, you’ll be able to download a certificate of completion. Use this to claim your CPEs or CPUs.

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Exploitation Analyst

No software. No set up. Unlimited access.

Skip the server racks and spin up a realistic environment with one click. Infosec Skills cyber ranges require no additional software, hardware or server space so your team can spend less time configuring environments and more time learning. Unlimited cyber range access is included in every Infosec Skills subscription so your team can skill up however they learn best.

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo