Anybody planning to dive into the world of Privacy needs to acquaint themselves with necessary certifications and The IAPP has developed a globally recognized certification program around information privacy. With the world taking privacy and GDPR laws strictly, it is essential for professions looking at the privacy field to get certified as best suited for them.
Currently there are several certifications provided by the IAPP with different objectives, in this article we will deal with CIPP and CIPM certifications, who can benefit from it and what areas does it cover.
CIPP stands for Certified Information Privacy Professional and covers specifics about data privacy laws and regulations and how to apply them.
The certification comes in four distinct certifications each covering a specific region. Thus we have CIPP/E for Europe, CIPP/A for Asia, CIPP/C for Canada, and CIPP/US for the US private sector. Since India abides with EU’S GDPR guidelines, CIPP/E becomes more relevant.
It is worth noting that CIPP/E is the go-to certificate for anyone wishing to demonstrate their proficiency in GDPR and related legislation aimed at the protection of EEA citizens, and according to the IAPP is their most popular certification. It provides you with a solid understanding of broad privacy and data protection concepts, including jurisdictional laws, regulations and enforcement models; essential privacy concepts and principals; legal requirements for handling and transferring data and more.
CIPM certification from The International Association of Privacy Professionals stands for Certified Information Privacy Manager and is a person who has the necessary expertise to establish, maintain, and manage a privacy program across all stages of its life cycle.
According to IAPP, CIPM is “the first and only privacy certification for professionals who manage day-to-day operations”. As IAPP explains, “The CIPM designation says that you’re a leader in privacy program administration and that you’ve got the goods to establish, maintain and manage a privacy program across all stages of its life cycle.”
This means that you can make data privacy regulations work effectively and efficiently in your organization by knowing how to structure a data protection team, develop and implement system frameworks, communicate relevant matters to stakeholders, measure privacy program performance, and much more.
In simpler terms, Certified Information Privacy Professional/Europe (CIPP/E) deals with Law and regulation based on the GDPR: The “What” of data protection in Europe whereas Certified Information Privacy Manager (CIPM) deals with Implementing privacy in an organization: The “How” of privacy from a management perspective.
You can choose the best fit for yourself according to the above criteria, however if you are looking to learn about the data protection laws, CIPP best suits you best, and if your work involves the understanding of implementation of the laws, CIPM is suitable from the management perspective. It is important to note that for a privacy professional to become well established knowledge of both what the laws are and how it can be implemented is necessary.