Controlled Document Approved by: IAPP Effective Date: 07/01/15
Page 1 of 1 Certification Advisory Board
Version 1.2.0 Approved on: 06/09/15 Supersedes: 1.1.0
Privacy Manager Certification
Examination Blueprint for the
Certified Information Privacy Manager (CIPM)
The examination blueprint indicates the minimum and maximum number of question
items that are included on the CIPM examination from the major areas of the Body of
Knowledge. Questions may be asked from any of the listed topics under each area.
You can use this blueprint to guide your preparation for the CIPM examination.
I. Privacy Program Governance 26 39
A. Organization Level 8 11
Create a company vision, establish a privacy program, structure the privacy team
B. Develop the Privacy Program Framework 9 13
Develop organizational privacy policies, standards and/or guidelines, define privacy
program activities
C. Implement the Privacy Policy Framework 6 9
Communicate the framework to internal and external stakeholders, ensure
continuous alignment to applicable laws and regulations to support the development
of an organizational privacy program framework
D. Metrics 3 6
Identify intended audience for metrics, define reporting resources, define privacy
metrics for oversight and governance per audience, identify systems/application
collection points
II. Privacy Operational Lifecycle 29 42
A. Assess Your Organization 8 11
Document current baseline of your privacy, processors and third-party vendor
assessment, physical assessments, mergers, acquisitions and divestitures, conduct
analysis and assessments, as needed or appropriate
B. Protect 2 5
Data life cycle, information security practices, Privacy by Design
C. Sustain 10 14
Measure, align, audit, communicate, monitor
D. Respond 9 12
Information requests, privacy incidents
Pease International Tradeport ∙ 75 Rochester Avenue. Suite 4 ∙ Portsmouth, NH 03801 USA ∙
+ 1 603.427.9200 ∙ certification@privacyassociation.org
You might also like
- A List of Privacy Law Fellowships - TeachPrivacy PDFDocument28 pagesA List of Privacy Law Fellowships - TeachPrivacy PDFroruangNo ratings yet
- Standford GuideDocument27 pagesStandford Guideapi-295642195No ratings yet
- IAPP Privacy Certification Candidate Handbook 3.0.0Document23 pagesIAPP Privacy Certification Candidate Handbook 3.0.0roruangNo ratings yet
- Qualified Security Assessor Complete Self-Assessment GuideFrom EverandQualified Security Assessor Complete Self-Assessment GuideNo ratings yet
- Systems SecurityDocument406 pagesSystems SecurityCristi MunteanuNo ratings yet
- Privacy Policy TemplateDocument4 pagesPrivacy Policy TemplateZafarNo ratings yet
- Interoperability Assessment ToolDocument8 pagesInteroperability Assessment ToolAriel GerardoNo ratings yet
- Competitor Study - Kredivo (Final)Document86 pagesCompetitor Study - Kredivo (Final)Mikhael Gracius67% (3)
- Privacy Manager CertificationDocument7 pagesPrivacy Manager CertificationroruangNo ratings yet
- CIPP:A Blueprint PDFDocument2 pagesCIPP:A Blueprint PDFroruangNo ratings yet
- Respondent TC Dme 409Document31 pagesRespondent TC Dme 409saisrianjani100% (1)
- DCSS enDocument36 pagesDCSS enashvar9No ratings yet
- ISO27k Model ScopesDocument1 pageISO27k Model ScopesvishnukesarwaniNo ratings yet
- DissertationDocument166 pagesDissertationrenderingNo ratings yet
- Teaching Information Privacy Law - TeachPrivacyDocument16 pagesTeaching Information Privacy Law - TeachPrivacyroruangNo ratings yet
- CIPP Asia BOK 1 0 0 Final PDFDocument7 pagesCIPP Asia BOK 1 0 0 Final PDFroruang100% (1)
- Asia Privacy Certification: Authoritative Resource ListDocument4 pagesAsia Privacy Certification: Authoritative Resource ListroruangNo ratings yet
- Thrive GDPR Audit TemplateDocument2 pagesThrive GDPR Audit TemplateCSKNo ratings yet
- QSA Main Student Study Guide 4.12Document21 pagesQSA Main Student Study Guide 4.12Jon GordonNo ratings yet
- Office of The Privacy Commissioner of Canada - Report To Parliament - Time To Modernize 20th Century ToolsDocument91 pagesOffice of The Privacy Commissioner of Canada - Report To Parliament - Time To Modernize 20th Century ToolsRBeaudryCCLENo ratings yet
- DPDP Act 2023Document8 pagesDPDP Act 2023amit_del83No ratings yet
- GDPR Assessment ToolsDocument1 pageGDPR Assessment ToolseeeNo ratings yet
- 9.CIPM Onl Mod9TranscriptDocument17 pages9.CIPM Onl Mod9TranscriptTran Duc HungNo ratings yet
- Best Practices For Data Loss Prevention (DLP) WebSenseDocument4 pagesBest Practices For Data Loss Prevention (DLP) WebSenseDani Kirky YlaganNo ratings yet
- GDPR and PIMS OverviewDocument47 pagesGDPR and PIMS OverviewketanmsNo ratings yet
- CSCU Course OutlineDocument13 pagesCSCU Course Outlineabhirup_guhaNo ratings yet
- Data Privacy: Building Trust in A Post - GDPR World: Frédéric Vonner, PWC Gabriela Gheorghe, PWCDocument16 pagesData Privacy: Building Trust in A Post - GDPR World: Frédéric Vonner, PWC Gabriela Gheorghe, PWCBiljanaNo ratings yet
- Crisc SPRING 2013 Certified in Risk and Information Systems ControlDocument5 pagesCrisc SPRING 2013 Certified in Risk and Information Systems Controlmankrish6314No ratings yet
- CCM and STAR ProgramDocument40 pagesCCM and STAR ProgramjeNo ratings yet
- Common Iso 27001 Gaps Issa0111Document4 pagesCommon Iso 27001 Gaps Issa0111nishu128No ratings yet
- CIPP A Authoritative Resource List 4.0Document3 pagesCIPP A Authoritative Resource List 4.0Anjali BhaskarNo ratings yet
- NESA Compliance Service - Paladion Networks - UAEDocument8 pagesNESA Compliance Service - Paladion Networks - UAEPRASHANTH B SNo ratings yet
- 19 1106 Cisa CISA Cyber Essentials S508C 0Document2 pages19 1106 Cisa CISA Cyber Essentials S508C 0Julio Cesar BalderramaNo ratings yet
- Module-6-Program Planning and DevelopmentDocument79 pagesModule-6-Program Planning and DevelopmentUmair Amjad100% (1)
- Accountability Roadmap For Demonstrable GDPR ComplianceDocument70 pagesAccountability Roadmap For Demonstrable GDPR CompliancesriramNo ratings yet
- Crisc BkaDocument20 pagesCrisc Bkajaychow_cmNo ratings yet
- PDP - Checklist For OrganisationsDocument9 pagesPDP - Checklist For OrganisationsSaurav yadavNo ratings yet
- Rashal International LLC GDPR Compliance Extract (International)Document5 pagesRashal International LLC GDPR Compliance Extract (International)Rashal International LLCNo ratings yet
- GDPR Case StudiesDocument18 pagesGDPR Case StudiesAndrei NiculescuNo ratings yet
- Prudential Practice Guide CPG 234 Management of Security Risk May 2013Document29 pagesPrudential Practice Guide CPG 234 Management of Security Risk May 2013mariomaremareNo ratings yet
- GDP R Contents ListDocument2 pagesGDP R Contents ListNipun MistryNo ratings yet
- 3 Steps To Simplifying Audits Showing Compliance and Managing Enterprise RiskDocument2 pages3 Steps To Simplifying Audits Showing Compliance and Managing Enterprise RiskNaorem Sing0% (1)
- IT-Grundschutz-catalogues 15th Version - 2015 DraftDocument4,727 pagesIT-Grundschutz-catalogues 15th Version - 2015 DraftVANo ratings yet
- HippaDocument1 pageHippaapi-283422107No ratings yet
- Welcome To Ipaymy: SSLI-1727603986-199/3.0Document26 pagesWelcome To Ipaymy: SSLI-1727603986-199/3.0Ngọc Nghĩa PhạmNo ratings yet
- Rsa Sans Roadmap To Creating A World Class SocDocument1 pageRsa Sans Roadmap To Creating A World Class SocRoot100% (1)
- WP2018 - O.1.3.1 - Privacy Standards PDFDocument32 pagesWP2018 - O.1.3.1 - Privacy Standards PDFAndrea MichinelliNo ratings yet
- InfoSecurity Professional Magazine Sept Oct2014Document40 pagesInfoSecurity Professional Magazine Sept Oct2014prog_man_0101No ratings yet
- CECIIS 2010 - Digital Evidence Chain of Custody - FrameworkDocument4 pagesCECIIS 2010 - Digital Evidence Chain of Custody - FrameworkjasmincosicNo ratings yet
- Defradar - GDPR Competence Development ProcedureDocument14 pagesDefradar - GDPR Competence Development ProcedureJakobović DomagojNo ratings yet
- Checklist For Data Protection Officer (DPO) : Within 30 DaysDocument2 pagesChecklist For Data Protection Officer (DPO) : Within 30 DaysFe TafallaNo ratings yet
- A548361697 23636 4 2019 Standards1Document53 pagesA548361697 23636 4 2019 Standards1angel tenshiNo ratings yet
- What Is NESA Compliance - ValueMentorDocument5 pagesWhat Is NESA Compliance - ValueMentorSachin RatnakarNo ratings yet
- Cipt 642-444Document40 pagesCipt 642-444Hashimmurikkad ShaNo ratings yet
- Information Security Management at HDFC Bank Contribution of Seven Enablers 1113Document8 pagesInformation Security Management at HDFC Bank Contribution of Seven Enablers 1113Đaŋush Ralston FoxNo ratings yet
- CISO Verification Form 1Document3 pagesCISO Verification Form 1Hero KitaNo ratings yet
- IIM Shillong Placement Brochure 2017 18Document38 pagesIIM Shillong Placement Brochure 2017 18omkardashetwarNo ratings yet
- Recovering From An Event ID 1034 On A Server ClusterDocument5 pagesRecovering From An Event ID 1034 On A Server ClusteryoursbalaNo ratings yet
- SEARCHITSecurity Assessment ToolDocument80 pagesSEARCHITSecurity Assessment Toolholamundo123No ratings yet
- Need For Women in CybersecurityDocument2 pagesNeed For Women in CybersecurityJordan SalazarNo ratings yet
- Cyber EthicsDocument16 pagesCyber Ethicsnavinnaithani100% (2)
- CSX FDocument4 pagesCSX FLorenzo FerrareseNo ratings yet
- InfoSec AwarenessDocument51 pagesInfoSec AwarenessGonçalo Almeida TeixeiraNo ratings yet
- Mandatory and Non-Mandatory Documents and Records For ISO 27001Document2 pagesMandatory and Non-Mandatory Documents and Records For ISO 27001Marcio RodriguesNo ratings yet
- NetPro Template SentDocument186 pagesNetPro Template SentVăn ThuậtNo ratings yet
- Third-party-Risk-Management Joa Eng 0317Document6 pagesThird-party-Risk-Management Joa Eng 0317jmonsa11No ratings yet
- Ver001 Trustwave MSS SLA PDFDocument4 pagesVer001 Trustwave MSS SLA PDFRaúl Menjura MachadoNo ratings yet
- Defradar - Supplier GDPR Assessment ProcedureDocument6 pagesDefradar - Supplier GDPR Assessment ProcedureJakobović DomagojNo ratings yet
- CIPMDocument1 pageCIPMDeviNo ratings yet
- Circular 18 - 2019 - TT-NHNN-EDocument11 pagesCircular 18 - 2019 - TT-NHNN-ENguyễn Trần Quỳnh Anh100% (1)
- GR 5 Science Released in Spring 2015 PDFDocument46 pagesGR 5 Science Released in Spring 2015 PDFroruangNo ratings yet
- Learn About The Highest Paying Legal JobsDocument12 pagesLearn About The Highest Paying Legal JobsroruangNo ratings yet
- Starting A Privacy Law Career - Daniel Solove - Pulse - LinkedInDocument4 pagesStarting A Privacy Law Career - Daniel Solove - Pulse - LinkedInroruangNo ratings yet
- GR 5 Science Released in Spring 2015 PDFDocument46 pagesGR 5 Science Released in Spring 2015 PDFroruangNo ratings yet
- Film and CCDocument28 pagesFilm and CCroruangNo ratings yet
- Lawyers May Soon Be Able To FDocument2 pagesLawyers May Soon Be Able To FroruangNo ratings yet
- 2015 Salary-Survey US Final PDFDocument17 pages2015 Salary-Survey US Final PDFroruangNo ratings yet
- ABA - Privacy Law Specialist PDFDocument5 pagesABA - Privacy Law Specialist PDFroruangNo ratings yet
- Where Do Lawyers Earn The Most Money - InvestopediaDocument5 pagesWhere Do Lawyers Earn The Most Money - InvestopediaroruangNo ratings yet
- Data Security Is Worsening - 2017 Was The Worst Year Yet - Daniel Solove - Pulse - LinkedInDocument5 pagesData Security Is Worsening - 2017 Was The Worst Year Yet - Daniel Solove - Pulse - LinkedInroruangNo ratings yet
- Vendors Create GDPR Compliance Solutions To Tackle A Variety of AreasDocument3 pagesVendors Create GDPR Compliance Solutions To Tackle A Variety of AreasroruangNo ratings yet
- Are Grad Students Employees - Labor Board To Again Weigh in - NPR Ed - NPRDocument10 pagesAre Grad Students Employees - Labor Board To Again Weigh in - NPR Ed - NPRroruangNo ratings yet
- 10 Things To Know About Privacy and Data Security Practice - Above The Law PDFDocument8 pages10 Things To Know About Privacy and Data Security Practice - Above The Law PDFroruangNo ratings yet
- CV Daniel Sol PDFDocument12 pagesCV Daniel Sol PDFroruangNo ratings yet
- Should Privacy Law Regulate Technological Design - An Interview With Woodrow Hartzog - Daniel Solove - Pulse - LinkedInDocument8 pagesShould Privacy Law Regulate Technological Design - An Interview With Woodrow Hartzog - Daniel Solove - Pulse - LinkedInroruangNo ratings yet
- 10 Reasons Why Privacy Matters - TeachPrivacyDocument13 pages10 Reasons Why Privacy Matters - TeachPrivacyroruangNo ratings yet
- TE Class 11 + 12Document5 pagesTE Class 11 + 12roruangNo ratings yet
- IT Law Week 4 NotesDocument6 pagesIT Law Week 4 NotesroruangNo ratings yet
- Revocatory Act, Previous Will (W1) Remains Revoked Unless It Is Revived. Revived IfDocument4 pagesRevocatory Act, Previous Will (W1) Remains Revoked Unless It Is Revived. Revived IfroruangNo ratings yet
- TE Class 17 + 18Document4 pagesTE Class 17 + 18roruangNo ratings yet
- IT Law Week 5 NotesDocument7 pagesIT Law Week 5 NotesroruangNo ratings yet
- Nymity Privacy Management Accountability Framework 092023Document5 pagesNymity Privacy Management Accountability Framework 092023Youssef OuyhyaNo ratings yet
- Awtry v. Glassdoor - Order PDFDocument28 pagesAwtry v. Glassdoor - Order PDFMark JaffeNo ratings yet
- Electronic TicketDocument17 pagesElectronic TicketAdireddy SatyatrinadhNo ratings yet
- Telia Device Insurance: 1. DefinitionsDocument6 pagesTelia Device Insurance: 1. DefinitionsShahnaz NawazNo ratings yet
- AC-0025 Practical Assessor and Instructor Additional Primary Centre Application Form PDFDocument5 pagesAC-0025 Practical Assessor and Instructor Additional Primary Centre Application Form PDFairlinemembership0% (1)
- Gallo 2017, Jesuit TheaterDocument28 pagesGallo 2017, Jesuit TheaterfusonegroNo ratings yet
- ITCA Application 0221Document2 pagesITCA Application 0221Spit FireNo ratings yet
- General Terms of Use: Jirnexu SDN BHD and Jirnexu Advisory SDN BHDDocument22 pagesGeneral Terms of Use: Jirnexu SDN BHD and Jirnexu Advisory SDN BHDMAGESWARAN A/L DORAISAMYNo ratings yet
- Certificate of ConformityDocument1 pageCertificate of ConformitySimohamed Iraki0% (1)
- SMG PP UsDocument9 pagesSMG PP UsGrace Angellie AquinoNo ratings yet
- Scrum Curso PlatziDocument102 pagesScrum Curso PlatziJosé CaamañoNo ratings yet
- 報名表 Application for Enrollment: 個人資料 Personal Particulars 甲部 Part ADocument4 pages報名表 Application for Enrollment: 個人資料 Personal Particulars 甲部 Part Antm awcpNo ratings yet
- PreliminaryReport 10 Audrey LNDocument18 pagesPreliminaryReport 10 Audrey LNtraderash1020No ratings yet
- Engage - British International College of CairoDocument8 pagesEngage - British International College of CairoMichael EmilNo ratings yet
- IBM Tivoli Privacy ManagerDocument274 pagesIBM Tivoli Privacy Managerhexen2050No ratings yet
- BSBHRM412 Support Employee and Industrial Relations (Release 1) - 2Document30 pagesBSBHRM412 Support Employee and Industrial Relations (Release 1) - 2Umar AliNo ratings yet
- Privacy Policy: User ConsentDocument5 pagesPrivacy Policy: User Consentpaulo jongNo ratings yet
- 672 Rotaract Club Certification Form enDocument2 pages672 Rotaract Club Certification Form enSeff Zamora phNo ratings yet
- Diana Kelley Part 2Document45 pagesDiana Kelley Part 2Ankit YadavNo ratings yet
- The SIMATIC PCS 7 Process Control System - Siemens Automation and Engineering - PDF Catalogs - Technical Documentation - BrochureDocument10 pagesThe SIMATIC PCS 7 Process Control System - Siemens Automation and Engineering - PDF Catalogs - Technical Documentation - BrochureJemeraldNo ratings yet
- Municipal Law MootDocument24 pagesMunicipal Law MootdiwakarNo ratings yet
- NXP CupDocument1 pageNXP Cupurvish_soniNo ratings yet
- Privacy PolicyDocument5 pagesPrivacy PolicySayem Al JubairNo ratings yet
- Unilever Stationery Guidelines Brand Centre UnileverDocument13 pagesUnilever Stationery Guidelines Brand Centre UnileverAlamgirKhanNo ratings yet
- Messrs: Subject: List of Acceptable Suppliers - Compilation of The Supplier Evaluation QuestionnaireDocument8 pagesMessrs: Subject: List of Acceptable Suppliers - Compilation of The Supplier Evaluation QuestionnairemedNo ratings yet
- CHCLEG003 - Assignment 1 Task 1 - Case ScenarioDocument3 pagesCHCLEG003 - Assignment 1 Task 1 - Case ScenarioBrigham Hunt100% (3)
