Certified Information Privacy Professional Europe (CIPP/E)

The CIPP/E covers the essential pan-European and national data protection laws as well as industry-standard best practices for corporate compliance with these laws. It also addresses the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.

The CIPP/E is the first credential specific to European data protection professionals that is part of a comprehensive principles-based framework and knowledge base in information privacy.

The Certified Information Privacy Professional Europe course has recently been awarded an ANSI accreditation.







Certified Information Privacy Professional Europe (CIPP/E)

Training Enquiry

When you earn a CIPP credential, it means you've gained a foundational understanding of both broad global concepts of privacy and data protection law and practice, plus you have knowledge of these components within your concentration;

Certified Information Privacy Professional Europe

  • Jurisdictional laws, regulations and enforcement models, or rules and standards
  • Essential privacy concepts and principals
  • Legal requirements for handling and transferring data

Top 10 Reasons To Pursue Your CIPP/E

  • The CIPP in the global industry standard for professionals entering and working in the field of privacy.
  • Achieving a CIPP credential demonstrates understanding of a principles-based framework and knowledge base in information privacy.
  • You'll be recognised as part of an elite group of knowledgeable, capable and dedicated privacy and data protection practitioners.
  • Holding a CIPP designation  elevates your leadership profile amongst your colleagues
  • The CIPP is a key benchmark among top employers for hiring and promoting privacy professionals
  • The CIPP credential opens the door to higher earning potential and opportunities for promotion
  • Certification ensures you share a common dialogue with colleagues in related practice areas, including information security, marketing, IT, compliance and product development
  • You'll gain access to the world's largest community of privacy professionals, including valuable educational resources and networking opportunities IAPP
  • You'll have the confidence to know that you have the necessary tools and knowledge you need to help propel your privacy program and add value accross your organisation.
  • It affirms your commitment to advancing the profession and to enhancing your skills and improving your job effectiveness. ​
  • Introduction to European Data Protection

    • Origins and Historical Context

      • Rationale for Data Protection
      • Human Rights Laws
      • Early Laws and Regulations
      • The need for a harmonised European approach.
      • The Treaty of Lisbon
    • European Regulatory Institutions

      • Council of Europe
      • European Court of Human Rights
      • European Parliament
      • European Commission
      • European Council
      • European Court of Justice
    • Legislative Framework

      • The Council of Europe Convention for the Protection of Individuals with Regard to the Automatic Processing of Personal Data of 1981 (The CoE Convention)
      • The EU Data Protection Directive (95/46/EC)
      • The EU Directive on Privacy and Electronic Communications (2002/58/EC) - as amended
      • The EU Data Retention Directive (2006/24/EC)
      • National data protection laws across Europe
  • European Data Protection Law and Regulation

    • Data Protection Concepts

      • Personal Data
      • Sensitive Personal Data
      • Processing
      • Controller 
      • Processor
      • Data Subject
    • Application of the Law

      • Establishment in the EU
      • Non-establishment in the EU
    • Data Protection Priniciples

      • Fairness and lawfulness
      • Purpose Limitation
      • Proportionally
      • Data Quality
    • Legitimate Processing Criteria

      • Consent
      • Contractual Necessity
      • Legal obligation, vital interests and public interest
      • Legitimate interests
      • Special categories of processing
    • Information Provision Obligations

      • Transparency Principle
      • Privacy Notices
      • Layered Notices
    • Data Subject Rights

      • Subject Access
      • Rectification, erasure or blocking of data
      • Right to object
      • Automated individual decisions
    • Confidentiality and Security

      • Appropriate technical and organisational measures
      • Breach notification
      • Engaging processors
    • Notification Requirements

      • Contents of Notification
      • Prior checking
      • National registers
    • International Data Transfers

      • Rationale for Prohibition
      • Safe Jurisdiction
      • Safe Harbour
      • Model Contracts
      • Binding Corporate Rules (BCRs)
      • Derogations
    • Supervision and Enforcement

      • Supervisory authorities and their powers
      • The Article 29 Working Party
      • Role of the European Data Protection Supervisor (EDPS)
  • Compliance with European Data Protection Law and Regulation

    • Employment Relationships

      • Legal basis for processing of employee data
      • Storage of personnel records
      • Workplace monitoring
      • EU Works Council
      • Whistleblowing systems
    • Suveillance Activities

      • Communications
      • Closed - Circuit Television (CCTV)
      • Biometric Authentication
      • Location - based services
    • Marketing Activities

      • Telemarketing
      • Direct Marketing
      • Online Behavioural Targeting
    • Internet Technology and Communications

      • Cloud Computing
      • Web Cookies
      • Internet Protocol (IP) adresses
      • Search Engine Marketing (SEM)
      • Social networking services
    • Outsourcing

      • Data protection obligations in an outsourcing contract
      • Off Shoring

This course is designed for anyone whose work relates to the processing of personal data, particularly those in the public sector and from EU institutions, agencies and bodies.

Who should attend?

  • Data Protection Officers
  • Compliance Officers
  • Information Officers
  • Record Managers
  • Human Resources Officers
  • Data Protection Professionals