About this Course

Tech Type Premium
Duration 4 Days

Every day we access, share, manage and transfer data across companies, continents and the globe. Having the knowledge to build your organization’s privacy structures from the ground up has never been more important. With regulators worldwide calling for tech professionals to factor data privacy into their products and services, the job market for privacy-trained IT pros has never been stronger.

This combined Certified Information Privacy Profesional (Day 1 & 2) with the Certified Information Privacy Technologist (Day 3 & 4) offers the ultimate how to course for profesional in a technlogy setting.

This course is designed for anyone whose work is related to the processing of personal data, particularly those in the public sector and from EU institutions, agencies and bodies, including:

  • Data Protection Officers
  • IT Managers and Administrators
  • Records Managers
  • System Developers
  • IT Security specialist
  • Anyone who builds and develops IT systems

*Please note: that whilst both CIPP & CIPT exam costs are covered within the fee of this course, you will need to book your exams via the IAPP website.

Delegates will receive 1 year membership to the IAPP

Learning Outcomes

The training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Profesional (CIPP) and Certified Information Privacy Technologist (CIPT) certification program.

Course Outline

Day 1 & 2

Module 1: Data Protection Laws
Introduces key European data protection laws and regulatory bodies, describing the evolution toward a harmonized
legislative framework.

Module 2: Personal Data
Defines and differentiates between types of data, including personal, anonymous, pseudo-anonymous and special categories.

Module 3: Controllers and Processors
Describes the roles and relationships of controllers and processors.

Module 4: Processing Personal Data
Defines data processing and GDPR processing principles, explains the application of the GDPR and outlines the legitimate bases for processing personal data.

Module 5: Information Provision
Explains controller obligations for providing information about data processing activities to data subjects and
supervisory authorities.

Module 6: Data Subjects’ Rights
Describes data subjects’ rights, applications of rights and controller and processor obligations.

Module 7: Security of Processing
Discusses considerations and duties of controllers and processors for ensuring security of personal data and providing notification of data breaches.

Module 8: Accountability
Investigates accountability requirements, including data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.

Module 9: International Data Transfers
Outlines options and obligations for transferring data outside the European Economic Area, including adequacy decisions and appropriate safeguards and derogations.

Module 10: Supervisions and Enforcement
Supervisions and Enforcement Describes the role, powers and procedures of supervisory authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.

Module 11: Compliance
Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, including employers processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.

Day 3 - Fundamentals of Information Privacy

Module 1: Common Principles and Approaches to Privacy.
This Module includes a brief discussion of the modern history of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.

Module 2: Jurisdiction and Industries.
This Module introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and industry sectors.

Module 3: Information Security: Safeguarding Personal Information.
This Module presents introductions to information security, including definitions, elements, standards and threats/ vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography and identity and access management (IAM).

Module 4: Online Privacy: Using Personal Information on Websites and with Other Internet-related Technologies.
This Module examines the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication and data collection. Additional topics include children’s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing and mobile devices.

Day 4 - Privacy in Technology

Module 1: Understanding the Need for Privacy in the IT Environment.
This Module highlights the impact that regulatory activities, security threats, advances in technology and the increasing proliferation of social networks have on IT departments.

Module 2: Core Privacy Concepts.
This Module reveals how privacy compliance becomes more attainable through developing information lifecycle plans, data identification and classification systems and data flow diagrams.

Module 3: Regulations and Standards Impacting Privacy in IT.
This Module introduces privacy laws, regulations and standards that can help IT professionals design better privacy programs and systems to handle personal information throughout the data lifecycle.

Module 4: Privacy in Systems and Applications.
This Module develops an understanding of the risks inherent in the IT environment and how to address them.

Module 5: Online Privacy Issues.
This Module presents information about online threats, threat prevention and the role of IT professionals in ensuring proper handling of user data.

Module 6: De-identifying and Anonymizing Personally Identifiable Information.
This Module reveals the importance of personally identifiable information and methods for ensuring its protection.

Module 7: Cloud Computing.
This Module evaluates privacy and security concerns associated with cloud services, and standards that exist to advise on their use.

Premium Course

4 Days

Delivery Method

Delivery method

Classroom / Attend from Anywhere

Receive classroom training at one of our nationwide training centres, or attend remotely via web access from anywhere.

Find dates and prices

Online booking is currently not available for this course, to find out more please call us on 0113 220 7150 or email us at info@qa.com to discuss how we can help.

Prepare for the IAPP Exams


We strongly recommend careful preparation, even for degreed professionals who have passed other certification tests.

Preparation makes all the difference. In general, we recommend that you train and study for a minimum of 30 hours.

We want you to succeed. Please take advantage of this advice and IAPP resources to get through exams with as little anxiety as possible.


Tips for effective studying

Completing a training course doesn't guarantee passing an exam. Additional preparation is essential, so:


Self-assess – Each IAPP exam comes with two tools for determining how ready you are:

  1. The body of knowledge is an outline of the information covered in the exam. Use it to identify topics you are and aren't familiar with.
  2. The exam blueprint tells you how many questions to expect on each topic. Use it to map out a study strategy – allowing more time for topics with many questions, for example.


Use your textbook properly – Start by reading the table of contents. Note which topics are new to you. That will give you a feel for how much study and review time you need. When you start reading:

  1. Highlight important points in each chapter
  2. Copy out key passages; it will help you remember them
  3. Review each chapter to make sure you've captured the key points before moving on


Create flash cards – As you read your textbook, articles, web pages, etc., copy new terms onto notecards. Write their definitions on the other side. Quiz yourself. Use the IAPP's glossary of privacy terms to look up unfamiliar terms and make flash cards of them also.


Form a study group – Discussing the material with your co-workers and colleagues is a great way to remember material and understand it more deeply.


Learn in context – It's easier and more interesting to learn a subject you're going to use in real life. IAPP publications and resources show how privacy affects our lives and businesses. Get familiar with privacy news and issues by signing up for the IAPP/s Daily Dashboard, Privacy Advisor, and Europe Data Protection Digest. Subscribe to the Field Fisher Waterhouse and DLA Piper privacy blogs and the Bird & Bird data protection newsletter. Also, compare what's going on in privacy today with your job. What privacy issues could affect your work and career?


Use questions to find answers­ – Every training course comes with sample questions to help you review what you've studied and identify weak areas. Re-read notes and chapters on those subjects. Ask your study partners questions. Search for articles that approach the subject from different directions.


Trusted, awarded and accredited

Fully accredited to ensure we provide the highest possible standards in learning

All third party trademark rights acknowledged.