About this Course

Tech Type Premium
Duration 2 Days
Special Notices

Please note – If you would like your one year of IAPP membership added to your existing account, please provide QA with your current IAPP membership email address when booking this course. Accounts can be merged, but requests to do so must be made to the IAPP.

Every day, we access, share, manage and transfer data across companies, continents and the globe. Knowing the ins and outs of data protection requirements gives you the information you need to stay ahead of breaches—and help you advance your career.

The Principles of Data Protection in Europe training covers the essential pan-European and national data protection laws, as well as industry-standard best practices for compliance with these laws. You’ll gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts governing the protection of personal data and trans-border data flows.

This course is designed for anyone whose work is related to the processing of personal data, particularly those in the public sector and from EU institutions, agencies and bodies, including:

  • Data Protection Officers
  • Data Protection Lawyers
  • Compliance Officers
  • Information Officers
  • Record Managers
  • Human Resources Officers
  • Data Protection Professionals
  • Anyone who uses, processes and maintains personal data

*Please note: that whilst exam costs are covered within the fee of this course, you will need to book your exam via the IAPP website. Delegates will be emailed their Kryterion exam voucher code by the IAPP directly after completion of the course. The voucher is valid for six months from point of receipt.

Learning Outcomes

Principles of Data Protection in Europe covers the essential pan-European and national data protection laws, as well as industry-standard best practices for corporate compliance with these laws. Those taking this course will gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.

The training is based on the body of knowledge for the IAPP’s ANSI-accredited Certified Information Privacy Professional/Europe (CIPP/E) certification program.

Course Outline

The program is broken into eleven modules:

Module 1: Data Protection Laws

Introduces key European data protection laws and regulatory bodies, describing the evolution toward a Harmonised European Legislative Framework.

Module 2: Personal Data

Defines and differentiates between types of data-including personal, anonymous, pseudo-anonymous and special categories.

Module 3: Controllers and Processors

Describes the roles and relationships of controllers and processors.

Module 4: Processing Personal Data

Defines data processing and GDPR processing principles, Explains the application of the GDPR and outlines the legitimate bases for processing personal data.

Module 5: Information provision

Explains controller obligations for providing information about data processing activities to data subjects and Supervisory Authorities.

Module 6: Data Subjects 'Rights

Describes data subjects' rights, applications of rights and obligations controller and processor.

Module 7: Security or Processing

Discusses considerations and duties of controllers and processors for Ensuring security of personal data and providing notification of data breaches.

Module 8: Accountability

Investigates accountability requirements, data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.

Module 9: International Data Transfers

Outlines options and obligations for transferring data outside the European Economic Area, Decisions adequacy and appropriateness safeguards and derogations.

Module 10: Super Visions and Enforcement

Describes the role, powers and procedures or Supervisory Authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.

Module 11: Compliance

Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, employers-including processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.

Premium Course

2 Days

Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.



Account Queries


Q: How do I access my IAPP account?

A: You will receive an email from the IAPP system when your MyIAPP account is created.


Q: I can’t access my account, who should I contact?

A: Please contact the IAPP offices to help with this.

  • Europe: europe@iapp.org
  • Elsewhere: membership@iapp.org

    Exam Information


    Q: How do I register for an exam?

    A: The exam voucher is in your MyIAPP portal. A voucher is valid on an account for six months. The scheduling of an exam must take place during that six months, but the trainee can schedule it for any future date.

    1. Log into your MyIAPP account.
    2. Click on "My Purchases" in the side menu.
    3. Click on the exam link—this will take you to Kryterion Global Testing Solutions, our computer-based testing provider.
    4. Choose your exam time at one of our hundreds of testing centres worldwide.


    Q: Can I reschedule my exam?

    A: Yes. If you reschedule the exam within 72 hours of the exam there is a $100 (USD) fee. There is no fee for rescheduling outside the 72 hour period.


    Q: Are the exams multiple choice or short answer?

    A: All exams are multiple choice.


    Q: What is the passing score?

    A: Because there can be slight differences in the difficulty of exam forms, all results are placed on a common scale, ranging from 100 to 500. The passing score for all IAPP exams is 300 (which does not represent 50%). When you pass an exam, your results report will show your scale score and the "pass" indicator. When you fail an exam, your results report will show your scale score, the "fail" indicator and an indication of your relative performance on each major section of the examination. The IAPP suggests you use these section results to guide your study before you retake the examination. The IAPP imposes a 30-day waiting period for an examination re-take. There is no limit to the number of times a candidate may attempt an exam.


    Q: How are the questions weighted?

    A: Each correct answer is worth one point on all exams.


    Q: What's the pass rate?

    A: The pass rate is around 70%.


    Q: How many questions are there and how long is the exam?



      Length (hours)























    Q: When will I find out my results?

    A: For exams taken at a testing center, you will automatically receive your results once you have completed your exam.

    For exams taken at an IAPP event, we process exams as quickly as possible. The latest you will receive your results by is 6 weeks.


    Q: Will I see a copy of my test and which questions I answered correctly or incorrectly?

    A: No, but if you do not pass, you will receive a breakdown of your scores by topic that will help guide your further study before retaking the exam.


    Q: How can I find a testing center?

    A: There are over 800 Kryterion High-stakes Online Secured Testing locations around the world. View all locations at http://www.kryteriononline.com. You can also find the link to this site on the IAPP website under the certification section.


    Q: What happens if I don't pass?

    A: You are eligible to re-take the exam after 30 days with a re-take price of USD$375. There is no limit on how many times you can re-take the exam. This is purchased directly through the IAPP website.


    Q: I need help with my registration or need special accommodations for testing, who do I ask?

    A: Questions about registration and inquiries for extended time for an exam should be directed to certification@iapp.org.


    Maintaining your Certification(s)


    Q: How do I maintain my certification(s)?

    A: Each certification requires 20 hours of Continuing Privacy Education (CPE) credits every two years.


    Q: How many CPEs can I earn from attending the class?

    A: If you are already certified you can earn 6.5 CPEs/day (13/program). These are not automatically added to your account. You must Submit your CPEs here:



    Q: How can I earn CPEs?

    A: Attending events, web conferences and more. For more ways to earn CPEs:



    Trusted, awarded and accredited

    Fully accredited to ensure we provide the highest possible standards in learning

    All third party trademark rights acknowledged.