About this course

Course type Premium
Course code QACIPM
Duration 2 Days

Every day, we access, share and manage data across companies, continents and the globe. Knowing how to implement a privacy program is an invaluable skill that will help you protect your organisation’s data—and take your career to the next level.

Our Principles of Privacy Program Management training is the premier course on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a privacy team. You will walk away with the skills to manage organisational privacy through process and technology—regardless of jurisdiction or industry.

This course is designed for anyone whose work is related to the processing of personal data, particularly those in the public sector and from EU institutions, agencies and bodies, including:

  • Data Protection Officers
  • Data Protection Lawyers
  • Compliance Officers
  • Information Officers
  • Record Managers
  • Human Resources Officers
  • Data Protection Professionals
  • Anyone who uses, processes and maintains personal data

*Please note: that whilst exam costs are covered within the fee of this course, you will need to book your exam via the IAPP website.

Delegates will learn how to

Principles of Privacy Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high-performing privacy team. Those taking this course will learn the skills to manage privacy in an organisation through process and technology—regardless of jurisdiction or industry.

The Principles of Privacy Program Management training is based on the body of knowledge for the IAPP’s ANSI-accredited Certified Information Privacy Manager (CIPM) certification program.


Day 1: Fundamentals of Information Privacy

Module 1: Common Principles and Approaches to Privacy
This module includes a brief discussion of the modern history of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.

Module 2: Jurisdiction and Industries
This module introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and industry sectors.

Module 3: Information Security: Safeguarding Personal Information
This module presents introductions to information security, including definitions, elements, standards and threats/ vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography and identity and access management (IAM).

Module 4: Online Privacy: Using Personal Information on Websites and with Other Internet-related Technologies
This module examines the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication and data collection. Additional topics include children’s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing and mobile devices

Day 2: Privacy Management

This program is broken into two segments: the first illustrates important practices in managing privacy, and the second is an interactive format in which participants apply these practices to a real-world scenario.

Module 1: Privacy Program Governance
This module reveals how to create a privacy program at an organizational level, develop and implement a framework and establish metrics to measure program effectiveness. Topics include: creating a company vision for its privacy program; establishing a privacy program that aligns to the business; structuring the privacy team; developing organizational privacy policies, standards and guidelines; defining privacy program activities; and defining program metrics.

Module 2: Privacy Operational Life Cycle
This substantial module reviews privacy program practices employed throughout the privacy life cycle—assess, protect, sustain and respond. Topics include: documenting the privacy baseline of the organization; data processors and third-party vendor assessments; physical assessments; mergers, acquisitions and divestitures; privacy threshold analysis; privacy impact assessments; information security practices; Privacy by Design; integrating privacy requirements across the organization; auditing your privacy program; creating awareness of the organization’s privacy program; compliance monitoring; handling information requests; and handling privacy incidents.

Premium Course

2 Days

Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.

Find dates and prices

Online booking is currently not available for this course, to find out more please call us on 01753 898320 or email us at info@qa.com to discuss how we can help.

Prepare for the IAPP Exams


We strongly recommend careful preparation, even for degreed professionals who have passed other certification tests.

Preparation makes all the difference. In general, we recommend that you train and study for a minimum of 30 hours.

We want you to succeed. Please take advantage of this advice and IAPP resources to get through exams with as little anxiety as possible.


Tips for effective studying

Completing a training course doesn't guarantee passing an exam. Additional preparation is essential, so:


Self-assess – Each IAPP exam comes with two tools for determining how ready you are:

  1. The body of knowledge is an outline of the information covered in the exam. Use it to identify topics you are and aren't familiar with.
  2. The exam blueprint tells you how many questions to expect on each topic. Use it to map out a study strategy – allowing more time for topics with many questions, for example.


Use your textbook properly – Start by reading the table of contents. Note which topics are new to you. That will give you a feel for how much study and review time you need. When you start reading:

  1. Highlight important points in each chapter
  2. Copy out key passages; it will help you remember them
  3. Review each chapter to make sure you've captured the key points before moving on


Create flash cards – As you read your textbook, articles, web pages, etc., copy new terms onto notecards. Write their definitions on the other side. Quiz yourself. Use the IAPP's glossary of privacy terms to look up unfamiliar terms and make flash cards of them also.


Form a study group – Discussing the material with your co-workers and colleagues is a great way to remember material and understand it more deeply.


Learn in context – It's easier and more interesting to learn a subject you're going to use in real life. IAPP publications and resources show how privacy affects our lives and businesses. Get familiar with privacy news and issues by signing up for the IAPP/s Daily Dashboard, Privacy Advisor, and Europe Data Protection Digest. Subscribe to the Field Fisher Waterhouse and DLA Piper privacy blogs and the Bird & Bird data protection newsletter. Also, compare what's going on in privacy today with your job. What privacy issues could affect your work and career?


Use questions to find answers­ – Every training course comes with sample questions to help you review what you've studied and identify weak areas. Re-read notes and chapters on those subjects. Ask your study partners questions. Search for articles that approach the subject from different directions.


Trusted, awarded and accredited

Fully accredited to ensure we provide the highest possible standards in learning

All third party trademark rights acknowledged.