Certified Information Privacy Manager (CIPM)

The “how” of privacy operations, and why you need it.

The CIPM is the world’s first and only certification in privacy programme management. When you earn a CIPM, it shows that you know how to make a privacy programme work for your organisation. In other words, you’re the go-to person for day-to-day operations when it comes to data protection.

The CIPM program was developed by the International Association of Privacy Professionals (IAPP), which is the world’s largest comprehensive global information privacy community and resource. The CIPM certification also holds accreditation under ISO 17024: 2012.


The course is broken into ten modules:

Identifies privacy program management responsibilities, and describes the role of accountability in privacy program management.

Examines considerations for developing and implementing a privacy program, including the position of the privacy function within the organization, role of the DPO, program scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks

Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.

Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.

Describes common types of privacy-related policies, outlines components and offers strategies for implementation.

Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure and the right to be forgotten.

Outlines strategies for developing and implementing privacy training and awareness programs.

Examines a holistic approach to protecting personal information through privacy by design.

Provides guidance on planning for and responding to a data security incident or breach.

Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.


Who should attend?


Achieving a CIPM credential shows that you have a practical and comprehensive knowledge of how data protection programs should work across an organization.

The Certified Information Privacy Professional/Europe (CIPP/E) credential focuses on the regulations that govern data protection programs.

Adding the CIPP/E to your CIPM puts you at the forefront of ensuring your are ready for the GDPR.