CIPP-E Certified Information Privacy Professional/Europe (CIPP/E) Exam Updated
PRIVACY’S PREMIER EUROPEAN DATA PROTECTION CERTIFICATION.
EARN IAPP’S MOST POPULAR CERTIFICATION—NOW AVAILABLE IN FRENCH AND GERMAN.
Developed in collaboration with the law firms, Bird and Bird, Field Fisher, Wilson/Sonsini and Covington and Burling, the CIPP/E encompasses pan-European and national data protection laws, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.
Our French and German versions were translated from our English exam through a rigorous process using the industry’s most respected translation firms, and following ISO-certified quality assurance processes. Additionally, we created German-English and French-English term glossaries for non-native English speakers to use while taking the exam. No machine translation was employed. Instead, native language speakers and subject matter experts reviewed materials multiple times to ensure accuracy, consistency and fluency.
With the power of ANSI/ISO accreditation behind it, a CIPP/E credential elevates your professional profile by deepening your knowledge and improving your job effectiveness. We constantly update our certification exams, textbooks and training to reflect the latest advances in privacy. The CIPP/E includes critical topics like the EU-U.S. Privacy Shield and the GDPR.
GDPR training? The IAPP is the place.
The GDPR includes among its mandates the requirement to appoint knowledgeable DPOs (data protection officers) tasked with monitoring compliance, managing internal data protection activities, training data processing staff, conducting internal audits and more. There’s a lot to know, there’s a lot at stake and there’s a lot of opportunity for privacy professionals with the right training and education.
Achieving a CIPP/E credential shows you have the comprehensive GDPR knowledge, perspective and understanding to ensure compliance and data protection success in Europe—and to take advantage of the career opportunity this sweeping legislation represents.
Add a CIPM credential to the CIPP/E and you’ll be uniquely equipped to fulfill the DPO requirements of the GDPR. The CIPP/E relates to the knowledge a DPO must have concerning the European legal framework of the legislation, and the CIPM the theoretical aspects necessary to lead an organization’s data protection efforts.
CIPP/E and CIPP/US study and exam guide
This CIPP study guide is written for those preparing for CIPP/E or CIPP/US exams. The guide contains everything you need to know about the exam. This CIPP study guide also contains useful tips that will aid your preparation for the IAPP exam.
Please note: The CIPP/E exam will experience an annual update that goes into effect July 1, 2021. Learn all about this update here: CIPP/E Exam Annual Update (July 1, 2021)
IAPP – CIPP, CIPM, CIPT
The International Association of Privacy Professionals (IAPP) offers international certifications in the field of privacy. The certificates are ANSI/ISO accredited. These certifications are widely recognized, and it is considered as the standard benchmark for professionals in the privacy industry. The IAPP issues the following certificates:
CIPM (privacy operations);
CIPT (technology);
CIPP (laws and regulations).
The CIPM certificate is intended for managers and is becoming increasingly popular among professionals in various industries. It’s about privacy management. It is for professionals who implement privacy programs. The CIPT certificate is intended for I.T. professionals. This certificate is the least popular and will soon be completely redesigned. The last variant, the Certified Information Privacy Professional (CIPP) certification, is the most popular among the IAPP certifications.
CIPP has various variants, and the two most popular certifications are:
CIPP/E – this is about privacy in Europe. The GDPR plays a central role in this. This certification is of a legal nature. You will learn everything about the most important privacy legislation.
CIPP/US – This is about privacy in the United States. You should note that there is no uniform privacy law in the United States, so this certification focuses on various privacy laws, such as HIPAA in the field of privacy in healthcare.
Other less known variants are CIPP/C for Canadian professionals and CIPP/A for privacy professionals in Asia. The certificate for U.S. government professionals (CIPP/G) is currently inactive. Various major law firms are behind the CIPP certifications, and this contributes to the success of this certification.
An alternative to the IAPP certifications is the Certified Information Systems Security Professional (CISSP). This certificate is issued by the International Information System Security Certification Consortium. This consortium is also known as (ISC)².
IAPP Study Materials for CIPP/E and CIPP/US
You can download various documents on the IAPP website to prepare for the exam (https://iapp.org/certify/). The most interesting documents are the Body of Knowledge and the Exam Blueprint. The Body of Knowledge highlights the list of subjects that you must cover in preparation for the exam. The Exam Blueprint is more interesting; it states how important each component is in the exam. Each subject in the IAPP material carries different scores, so it is vital that you acquaint yourself with the exam blueprint to understand the sections that are most important.
Aside from these documents, you will also find other valuable materials on the IAPP site. These include the CIPP Study Guide, Authoritative Resource List, and Glossary of Privacy Terms. You can download these documents, but note that they are of little importance compared to the Body of Knowledge and the Exam Blueprint. You can search through the IAPP settings where you can follow classroom training. This takes around two days. Furthermore, you can follow online preparation materials that are available on the IAPP site. (Note: This is not a complete guide for preparing for your IAPP test.
Before you start studying, download both documents and study them carefully! Please note that the material changes by approximately 10% every 1st of September.
Also, buy a copy of the IAPP sample questions. These practice questions will give you a preview of what the exam looks like. However, it is generally noted that the level of these practice questions is considerably lower than the questions in the real exam. If you register in advance for an IAPP account, the chances are that you will receive a coupon code with which you can download the practice exam for free.
Official Textbooks for the CIPP/US and CIPP/E Program
Although it is not clearly stated on the IAPP website; the official CIPP study guides are:
CIPP/E – European Data Protection: Law and Practice. Ustaran, Eduardo, second edition. IAPP, 2019. Please note – the book does not contain the exam updates made on September 1, 2020 and July 1, 2021.
CIPP/US – U.S. Private-Sector Privacy, Third Edition. Peter P. Swire and DeBrae Kennedy-Mayo. IAPP, 2020. Please note – this book has not been updated to reflect the changes made on September 1, 2020.
These books cost $75 and are included in the official IAPP courses (online or in class). You can also order them from IAPP online store. The books do not contain all the materials you will need for the exam. However, it contains all the basic course material.
If you want to order the book, we advise that you go for the e-book version, which is easy to navigate or search while you are studying.
For CIPP/E: the European Union has made a free e-book available to aid your preparation for the IAPP test. Download the e-book here.
Studying for the CIPP/E and CIPP/US Exams?
Here are some tips and advice that will aid your preparation for the CIPP exams.
The CIPP exam is a tough one. You will need to prepare thoroughly for the exam. According to the IAPP, 30 hours of study time should be sufficient, but most people say they need over 60 hours to prepare adequately.
Many questions are asked in the exams that you can literally extract from the book. Therefore you should read the CIPP study guide thoroughly.
Make sure that you know the most important articles and that you also know, for example, what is stated in article 15 of the GDPR. Take a good look at the articles of the law that are most important in the examination (Exam Blueprint).
There are few practice questions on the internet. You can also download the practice questions on the IAPP website. For any additional questions, follow an (online) training or take a look at Amazon. You can find here, for example, the book of Real CIPP/E Prep: An American’s Guide to European Data Protection Law and the General Data Protection Regulation (GDPR) by Gorden Yu or Full CIPP/US Practice Exam by Jasper Jacobs.
Don’t be fooled by the lack of practice questions. The majority of the questions come directly from the manuals, and the other part consists of scenario questions.
For CIPP/E: search the internet for flashcards, with which you quickly learn the most important concepts. Check here.
For CIPP/E: always keep the GDPR close at hand and read the articles. If you want an extra explanation, you can also read the recitals. They introduce the GDPR. Check here for more useful info.
Ask yourself regular questions like what do I know about the information obligations under the GDPR or what do I know about HIPAA and what does or does not fall within the scope of HIPAA etc.
The CIPP Exam
You can request and schedule the exam via the IAPP website. To do this, you must first register and purchase an exam voucher ($550). Afterward, you can register for the exam at any test center near you.
After completing your registration, you will be required to take a seat behind a computer. You are not allowed to bring any items into the exam room. You will be given 150 minutes for both the test. You are required to answer 90 multiple-choice questions. Please note that once you start, you cannot pause the time. If you decide to use the restroom, it will be at the expense of your time.
Often, the 150 minutes duration is sufficient for the exam. Most candidates experience some time stress when they start the exam. However, you will be able to complete the multiple-choice questions in no time, while the scenario questions may take you more time.
Additional Tips
If you are in doubt about a question, flag it and answer it later.
Remember that you do not have to answer all the questions correctly. There are several simple multiple-choice questions that you can answer correctly by only studying the CIPP study guide. You will need to study wide to answer most of the scenario questions. Also, some of the questions are experimental and will not be added to your overall score.
Don’t be fooled by the scenario questions. These are questions that outline a long case. There is a lot of information in the scenario that you do not need at all when answering your question.
In this blog post, you can find and download CIPP/US sample questions for free: CIPP/US Practice Questions (Sample Questions).
If you have not had enough time to prepare adequately, reschedule the exam. This must be done at least two days before the exam date. Good luck!
Undecided about CIPP/E, CIPP/US (or CIPM)?
Are you undecided about CIPP/E, CIPP/US (or CIPM)? No problem. Just read this blog post: Choose CIPP/US or CIPP/E? Or CIPM?
CIPP/E and CIPP/US Prep course
We offer a great exam prep course including a detailed outline of the entire textbook, 300+ IAPP style practice questions and various training videos. This combination ensures optimum preparation for the exam and a high chance of excelling at your first try. Register here.
QUESTION 1
Which statement is correct when considering the right to privacy under Article 8 of the European Convention on Human Rights (ECHR)?
A. The right to privacy is an absolute right
B. The right to privacy has to be balanced against other rights under the ECHR
C. The right to freedom of expression under Article 10 of the ECHR will always override the right to privacy
D. The right to privacy protects the right to hold opinions and to receive and impart ideas without interference
Correct Answer: B
QUESTION 2
What is one major goal that the OECD Guidelines, Convention 108 and the Data Protection Directive
(Directive 95/46/EC) all had in common but largely failed to achieve in Europe?
A. The establishment of a list of legitimate data processing criteria
B. The creation of legally binding data protection principles
C. The synchronization of approaches to data protection
D. The restriction of cross-border data flow
Correct Answer: D
QUESTION 3
A key component of the OECD Guidelines is the “Individual Participation Principle”. What parts of the General
Data Protection Regulation (GDPR) provide the closest equivalent to that principle?
A. The lawful processing criteria stipulated by Articles 6 to 9
B. The information requirements set out in Articles 13 and 14
C. The breach notification requirements specified in Articles 33 and 34
D. The rights granted to data subjects under Articles 12 to 22
Correct Answer: D
Examkingdom IAPP CIPP-E exam pdf, Certkingdom IAPP CIPP-E PDF
Best IAPP CIPP-E Certification, IAPP CIPP-E Training at certkingdom.com