U.S. Government Privacy Certification - International Association of ...

More documents

Recommendations

Info

copyright © 2011, IAPP• Individuals who advise senior officers with government on information management policiesand practices specifically as these relate to personal information such as recordsmanagement or record retention• Information technology officers (CIO, CTO, CISO, IS manager)U.S. State and Local Governments• Officers and employees with privacy-related responsibilities or obligations such as privacyofficers, compliance managers, records managers, access-to-information coordinators,information security managers, information auditors, etc.• Information technology officers (CIO, CTO, CISO, IS Manager)Private Sector Organizations• Attorneys, consultants, independent professionals and/or employees of vendor companieswho serve clients in U.S. Federal, state or local governments• Existing Certified Information Privacy Professionals (CIPPs) who wish to add a governmentprivacy specialization to their core credential.Certification RequirementsIn order to become certified in U.S. government privacy, candidates must complete and pass boththe IAPP Certification Foundation Examination and the CIPP/G Examination (offered separately) for agrand total of three hours of testing. These examinations are offered exclusively by the IAPP. Theyare administered on-site at select conferences and testing events that are held throughout theUnited States each year.• First-time candidates for IAPP privacy certification (e.g. individuals who do notpresently hold any IAPP certification) must activate an IAPP membership at any level inadvance of their test (special discounted rates for IAPP membership are available to U.S.government employees). Candidates must then pass both the Certification FoundationExamination, a two-hour, three-part, 120-item, objective test and the CIPP/G Examination,a one-hour, two-part, 60-item, objective test.• Existing IAPP-certified professionals (e.g. individuals who presently hold a CIPP,CIPP/C, CIPP/E or CIPP/IT certification) are “grandfathered” into the Foundation testingrequirement but must still meet the CIPP/G testing requirement by passing the CIPP/GExamination, a one-hour, two-part, 60-item, objective test.“Successful completion” of CIPP/G is defined as an aggregate score of 70% or greater oneach exam (as applicable under each scenario above). This means at least 84 out of 120 total pointsfor Certification Foundation exam and at least 42 out of 60 total points for CIPP/G exam. Partialcompletion of either exam will result in no credential being awarded until such time that allrequirements are met. The exams may be taken in sequence at the same sitting or separately atdifferent testing events.Pease International Tradeport ∙ 75 Rochester Avenue. Suite 4 ∙ Portsmouth, NH 03801 USA ∙+1 603.427.9200 ∙ certification@privacyassociation.org2
copyright © 2011, IAPPUpon successful completion of both of the above referenced examinations, the CIPP/Gcertification becomes active on the date of the most recent examination and remains in forceannually provided that:(1) Once certified, the CIPP/G credential holder keeps the IAPP membership status current andin good standing each year; and,(2) Once certified, the CIPP/G credential holder also satisfies a minimum of 10 credit hours ofcontinuing privacy education each year.Continuing privacy education (“CPE”) is defined as any program, event, forum, book,presentation, speaking engagement or teaching engagement that relates in whole to informationprivacy, security, auditing, risk management or legal compliance whether provided by the IAPP oranother sanctioning body. Specific guidelines on CPE-eligible programs and application processes areavailable for review under the “Continuing Education” section of the IAPP Web site atwww.privacyassociation.org.Course FormatThe pages that follow this program introduction describe the CIPP/G Common Body of Knowledge(“CBK”) in outline form. The course consists of two sections:I. U.S. Government Privacy LawsII. U.S. Government Privacy PracticesCBK Section I addresses privacy laws, regulations and policies –those specific to governmentpractice as well as those more broadly applicable to both the public and private sectors in the UnitedStates.CBK Section II describes government-standard practices for privacy program development andmanagement, privacy auditing and records management as well as reporting obligations andprogram controls.Course ReferencesTraining for CIPP/G certification is optional and available through the IAPP Certification FoundationTraining Workshop and the CIPP/G Training Workshop for a grand total of seven hours of instruction.Each of these courses is available for purchase online (as a CD-ROM courseware package) as well ason-site (as live classroom sessions at select IAPP conferences and partner events).Additional CIPP/G reference materials include:• All chapters from “U.S. Government Privacy: Essential Policies and Practices for PrivacyProfessionals” by Julie McEwen, CIPP/G, CISSP and Dr. Stuart Shapiro, CIPP/G (IAPP,2008). ISBN #978-0-9795901-1-5.Pease International Tradeport ∙ 75 Rochester Avenue. Suite 4 ∙ Portsmouth, NH 03801 USA ∙+1 603.427.9200 ∙ certification@privacyassociation.org3
Page 1: copyright © 2011, IAPPU.S. Governm
Page 5 and 6: copyright © 2011, IAPPb. Laws comp
Page 7 and 8: II.U.S. Government Privacy Practice

U.S. Government Privacy Certification - International Association of ...

Create successful ePaper yourself

Delete template?

Save as template?