Certified Information Privacy Professional/Europe (CIPP/E) (Thai)
Certified Information Privacy Professional/Europe
ABOUT THIS COURSE
This training provides a thorough understanding of pan-European and national data protection laws, encompassing essential data protection terminology and practical aspects of personal data protection and cross-border data flows. The CIPP/E program is an initiative of the International Association of Privacy Professionals (IAPP), the world's largest and most extensive global information privacy community and resource. The CIPP/E certification is accredited under ISO 17024: 2012.
Earning the CIPP/E credential demonstrates a comprehensive grasp of the GDPR, equipping you with the knowledge and perspective to ensure compliance and data protection success in Europe. This qualification represents a significant career opportunity in the wake of GDPR's impact. Further enhancing your qualifications with the CIPM alongside the CIPP/E positions you at the forefront of readiness for GDPR compliance and challenges.
COURSE BENEFITS
This certification demonstrates to the global community your expertise in privacy laws and regulations, along with your capability to apply them effectively, securing your position in the information economy. Obtaining a CIPP credential signifies that you have acquired a fundamental understanding of the wide-ranging global concepts of privacy and data protection law and practice. This includes knowledge of jurisdictional laws, regulatory frameworks, enforcement models, key privacy concepts and principles, as well as the legal requisites for managing and transferring data, among other critical areas.
WHO SHOULD ATTEND?
o Data Protection Lawyers
o Records Managers
o Information Officers
o Compliance Officers
o Human Resource Officers
o Anyone who uses, processes and maintains personal data
COURSE CONTENTS
Module 1: Data protection laws
Introduces key European data protection laws and regulatory bodies, describing the evolution toward a harmonized legislative framework.
Module 2: Personal data
Defies and differentiates between types of data as defied by the GDPR, including personal, anonymous, pseudonymous and special categories.
Module 3: Controllers and processors
Describes the roles and relationships of controllers and processors as defied by the GDPR.
Module 4: Processing personal data
Defies data processing and GDPR processing principles, explains the application of the GDPR and outlines the legal grounds for processing personal data.
Module 5: Data subject rights
Describes data subject rights, applications of rights, and controller and processor obligations as set out in the GDPR.
Module 6: Information provision obligations
Explains controller obligations for providing information about data processing activities to data subjects and supervisory authorities as set out in the GDPR.
Module 7: International data transfers
Outlines options and obligations under the GDPR for transferring data outside the European Economic Area, including adequacy decisions and appropriate safeguards and derogations.
Module 8: Compliance considerations
Discusses the applications of European data protection laws, legal bases and compliance requirements for processing personal data in practice, including employers processing employee data, surveillance, direct marketing, and internet technology and communications.
Module 9: Security of processing
Discusses considerations and duties of controllers and processors for ensuring security of personal data and GDPR specifications for providing notification of data breaches.
Module 10: Accountability
Investigates accountability requirements, including data protection management systems, data protection impact assessments, data protection policies and the role of the data protection officer.
Module 11: Supervision and enforcement
Describes the role, powers and procedures of supervisory authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for noncompliance as set out in the GDPR.