Training: preparing for Certified Information Privacy Manager (CIPM) certification

16 - 17 February 2021

Information, one of the most valuable assets in any organization, is being accessed, shared, managed and transferred by people in your organization — in all departments and at all levels every day. Unless your employees have a solid understanding of the considerations and challenges involved in managing data, you risk a data breach, diminished customer trust and possible enforcement action.

IAPP training can provide your staff with the knowledge they need to help you meet your privacy program goals of reduced risk, improved compliance, enhanced brand loyalty and more.

Privacy Program Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high-performing privacy team. Those taking this course will learn the skills to manage privacy in an organization through process and technology—regardless of jurisdiction or industry.

This training is a robust, interactive opportunity to learn about critical privacy concepts that are also integral to the CIPM exam. While not purely a “test prep” course, this training is appropriate for professionals who plan to certify, as well for those who want to deepen their privacy knowledge. Both the training and the exam are based on the same body of knowledge

The Privacy Program Management training is based on the body of knowledge for the IAPP’s ANSI-accredited Certified Information Privacy Manager (CIPM) certification program.

The 2 day-course is in in English with flexible delivery available either live-video or in person depending on the number of people wishing to attend the training.


Module 1: Introduction to privacy program management. Identifies privacy program management responsibilities and describes the role of accountability in privacy program management.

Module 2: Privacy governance. Examines considerations for developing and implementing a privacy program, including the position of the privacy function within the organization, role of the DPO, program scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks.

Module 3: Applicable laws and regulations. Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organizational strategy.

Module 4: Data assessments. Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.

Module 5: Policies. Describes common types of privacy-related policies, outlines components and offers strategies for implementation.

Module 6: Data subject rights. Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and rectification, data portability, and erasure.

Module 7: Training and awareness. Outlines strategies for developing and implementing privacy training and awareness programs.

Module 8: Protecting personal information. Examines a holistic approach to protecting personal information through privacy by design.

Module 9: Data breach incident plans. Provides guidance on planning for and responding to a data security incident or breach.

Module 10: Monitoring and auditing program performance. Relates common practices for monitoring, measuring, analyzing and auditing privacy program performance.

Maili Torma Head of Data Protection and Cybersecurity (CIPP/E, CIPM, ISO27001 Lead Auditor)

Training price and registration

The 2-day certification training costs EUR 1,550 (+VAT). The price includes IAPP membership and exam voucher.

The 2-day certification training without IAPP membership and exam voucher costs EUR 1,100 (+VAT).

To register please fill out the online registration form, send an e-mail to or phone us on +372 626 0500 by 12 Febryary 2021.

If you have registered but cannot participate for any reason, we will refund the participation fee if you notify us of the cancellation no later than 5 working days before participation. If you cancel 2 working days before the start of the course, we will refund you 50% of the participation fee. Unfortunately, in case of later notification of cancellation, it is not possible to refund the participation fee.

With any questions about CIPM training or certificate, please do not hesitate to contact Maili Torma on +372 626 0500 or by e-mail

Register here 


Advantages of being a member of IAPP

Established 20 years ago, IAPP is the international association of privacy professionals, with more than 55,000 members all over the world.

Members of IAPP can participate in exclusive international conferences, regional meetings, and have access to regularly issued information materials, news and studies. The CIPP/E certification issued by the IAPP provides a major competitive edge on the European labour market, as there is a shortage of certified data protection experts. Only five people in Estonia currently hold the certification and are IAPP members. Click here for further information.

  • 16-17 February 2021, 9.00-17.00
  • Training is via live-video or in person in Grant Thornton Baltic's Tallinn office Pärnu Road 22.
Tel: +372 626 0500 Contact:
event download block