CIPP/E & CIPM Training Bundle

3,395.00  excl. VAT

Duration: 4 days;

Prerequisites: None;

Instructor: Jorge Carrilllo,, PhD; (Certified Data Protection Officer GDPR-P, GDPR-F PCI ISA (PCI SSC Internal Security Assessor) and PCI Professional (PCIP); Microsoft Certified Trainer; Certified Professional in Accessibility (CPACC); PMI-ACP, PMP, PRINCE2 Practitioner 2009 and 2017 edition; ITIL Foundations; CIPP/G, CIPP/US, CIPP/E, CIPP/C, CIPM, CIPT; FIP; CISSP; Data Protection Compliance in the EU).

Delivery dates: April 15th -18th  2019 (MON – THU);

Location: Conference Room, VITOSHA Park Hotel, 1, Rosario Str., Sofia 1700, Bulgaria.

This Course Includes: All Courseware for CIPP/E and CIPM, Practice Assessment Questions, One year’s IAPP Membership and One Exam Voucher per certification. Membership and exam vouchers are emailed directly to participants.


Certified Information Privacy Professional Europe (CIPP/E) & Certified Information Privacy Manager (CIPM) Training Bundle

Note to international travelers:

This course will be delivered in Sofia, Bulgaria. Sofia Airport is easily accessible from all major airports around the world. Learn Valley ltd. provides all international travelers with advice and support prior to and during their trip. Learn Valley Ltd. will welcome international travelers at Sofia Airport and arrange for transportation to their hotel of choice. The hotel where the event will take place (VITOSHA Park Hotel) offers single standard rooms in the range~EUR 50 per night.  EU businesses registered outside of Bulgaria will not be charged VAT on the tickets for the course due to the EU reverse charge mechanism.


Founded in 2000, the IAPP is the world’s largest and most comprehensive privacy resource with a mission to define, support and improve the Privacy profession globally. Every day, we access, share, manage and transfer data across companies, continents and the globe. Knowing the ins and outs of data protection requirements gives you the information you need to stay ahead of breaches—and help you advance your career. The Principles of Data Protection in Europe training covers the essential pan-European and national data protection laws, as well as industry-standard best practices for compliance with these laws.

The General Data Protection Regulation (GDPR) takes effect in 2018 and CIPP/E gives you comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe.

The CIPM is the world’s first and only certification in privacy programme management. When you earn a CIPM, it shows that you know how to make a privacy programme work for your organisation. In other words, you’re the go-to person for day-to-day operations when it comes to data protection. The CIPM program was developed by the International Association of Privacy Professionals (IAPP), which is the world’s largest comprehensive global information privacy community and resource. The CIPM certification also holds accreditation under ISO 17024: 2012.

What you will learn:

  • Introduction to European Data Protection;
  • European Regulatory Institutions;
  • Legislative Framework;
  • Compliance with European Data Protection Law and Regulation;
  • International Data Transfers.

What can the CIPP do for you:

It will show the world that you know privacy laws and regulations and how to apply them, and that you know how to secure your place in the information economy. When you earn a CIPP credential, it means you’ve gained a foundational understanding of broad global concepts of privacy and data protection law and practice, including: jurisdictional laws, regulations and enforcement models; essential privacy concepts and principals; legal requirements for handling and transferring data and more.

Developed in collaboration with the law firms, Bird and Bird, Field Fisher, Wilson/Sonsini and Covington and Burling, the CIPP/E encompasses pan-European and national data protection laws, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.

With the power of ANSI/ISO accreditation behind it, a CIPP/E credential elevates your professional profile by deepening your knowledge and improving your job effectiveness. We constantly update our certification exams, textbooks and training to reflect the latest advances in privacy. The CIPP/E includes critical topics like the EU-U.S. Privacy Shield and the GDPR.

When the GDPR takes effect in 2018, among its mandates is the requirement to appoint knowledgeable DPOs (data protection officers) tasked with monitoring compliance, managing internal data protection activities, training data processing staff, conducting internal audits and more. There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for privacy professionals with the right training and education.

Achieving a CIPP/E credential shows you have the comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe—and to take advantage of the career opportunity this sweeping legislation represents.

Add a CIPM credential to the CIPP/E and you’ll be uniquely equipped to fulfill the DPO requirements of the GDPR. The CIPP/E relates to the knowledge a DPO must have concerning the European legal framework of the legislation, and the CIPM the theoretical aspects necessary to lead an organization’s data protection efforts.

What can the CIPM do for you:

  • How to create a company vision
  • How to structure the privacy team
  • How to develop and implement a privacy program framework
  • How to communicate to stakeholders
  • How to measure performance
  • The privacy program operational lifecycle

About the instructor, Jorge Carrillo PhD:

Jorge Carrillo PhD is an enthusiastic InfoTech advisor since 2000 in the areas of IT, Compliance, Project Management and InfoSec.

Jorge Carrillo obtained his PhD in applied Informatics at the Faculty of Informatics at Masaryk University in Brno. After his studies, Jorge has been helping international organizations to address complex security and compliance challenges.

Jorge is an active contributor to the IT Industry. He has participated as a speaker at few international conferences, and delivered lectures and workshops at Czech Universities to promote good practices in different topics of Information Governance and Project Management since 2011. .

Who should attend? Target Audience CIPP/E and CIPM Training Bundle:

  • Chief Privacy Officers (CPOs);
  • Privacy Professionals;
  • Legal Compliance Officers;
  • Risk Managers;
  • Security Officers (CISO);
  • Security Managers;
  • CISSP/CISM/CISA certified professionals;
  • Data Protection Officers;
  • Data Protection Lawyers;
  • Records Managers;
  • Information Officers;
  • Compliance Officers;
  • Human Resource Officers;
  • Anyone who uses, processes and maintains personal data.
  • Data Protection Managers
  • Auditors
  • Legal Compliance Officers
  • Information Managers
  • Anyone involved with data protection processes and programmes.

Course Objectives CIPP/E:

Principles of Data Protection in Europe covers the essential pan-European and national data protection laws, as well as industry-standard best practices for corporate compliance with these laws. Those taking this course will gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows. The training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Professional/Europe (CIPP/E) certification program.

Course outline CIPP/E:

  • Module 1: Data Protection Laws . Introduces key European data protection laws and regulatory bodies, describing the evolution toward a harmonised legislative framework.
  • Module 2: Personal Data. Defines and differentiates between types of data, including personal, anonymous, pseudo-anonymous and special categories.
  • Module 3: Controllers and Processors : Describes the roles and relationships of controllers and processors.
  • Module 4: Processing Personal Data. Defines data processing and GDPR processing principles, explains the application of the GDPR and outlines the legitimate bases for processing personal data.
  • Module 5: Information Provision. Explains controller obligations for providing information about data processing activities to data subjects and supervisory authorities.
  • Module 6: Data Subjects’ Rights. Describes data subjects’ rights, applications of rights and controller and processor obligations.
  • Module 7: Security of Processing. Discusses considerations and duties of controllers and processors for ensuring security of personal data and providing notification of data breaches.
  • Module 8: Accountability. Investigates accountability requirements, including data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.
  • Module 9: International Data Transfers. Outlines options and obligations for transferring data outside the European Economic Area, including adequacy decisions and appropriate safeguards and derogations.
  • Module 10: Supervisions and Enforcement. Describes the role, powers and procedures of supervisory authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.
  • Module 11: Compliance. Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, including employers processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.

Course outline CIPM:

  • Module 1: Introduction to privacy program management. Identifies privacy program management responsibilities, and describes the role of accountability in privacy program management.
  • Module 2: Privacy governance. Examines considerations for developing and implementing a privacy program, including the position of the privacy function within the organization, role of the DPO, program scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks.
  • Module 3: Applicable laws and regulations. Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.
  • Module 4: Data assessments. Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.
  • Module 5: Policies. Describes common types of privacy-related policies, outlines components and offers strategies for implementation.
  • Module 6: Data subject rights. Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure and the right to be forgotten.
  • Module 7: Training and awareness. Outlines strategies for developing and implementing privacy training and awareness programs.
  • Module 8: Protecting personal information. Examines a holistic approach to protecting personal information through privacy by design.
  • Module 9: Data breach incident plans. Provides guidance on planning for and responding to a data security incident or breach.
  • Module 10: Measuring, monitoring and auditing program performance. Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.