Six Hot Data Privacy Certifications for 2021

It has become imperative for organizations large and small to implement appropriate policies and practices to protect data privacy. No enterprise can afford to handle and store customers' personal information without adequate security and privacy controls. A data breach can result in loss of credibility and business.

According to business research firm Gartner, "By 2023, 65 percent of the world's population will have its personal information covered under modern privacy regulations, up from 10 percent today."

Companies are investing in technology and recruiting skilled professionals to enable them to comply with data protection regulations and safeguard customer information. Demand for knowledgeable data privacy professionals is increasing.

Certification is one way of demonstrating domain knowledge and skills. Some respected data protection and privacy credentials are managed by recognized nonprofit organizations. Certifications are also available from commercial providers that provide various data privacy solutions as well.

Let's take a look at six highly useful data privacy and protection credentials:

Certified Information Privacy Professional (CIPP)

CIPP is managed by the International Association of Privacy Professionals (IAPP), a global nonprofit information privacy organization, which is ANSI-accredited. Over the years, the IAPP certification program for data protection and privacy has earned a reputation for being one of the most comprehensive and current programs in this domain.

The CIPP validates foundational knowledge of the conceptual basis of laws and practices concerning protection and privacy of data. Certification objectives cover jurisdictional laws, regulations, and the models to enforce the same, as well as legal stipulations governing data handling and transfer.

This credential is designed for data protection and privacy professionals responsible for information management, compliance, legal requirements, data governance, and human resources. The CIPP is accredited under ANSI/ISO standard 17024:2012. The CIPP has a handful of concentrations that are specific to different regions: CIPP/A (Asia), CIPP/E (Europe), CIPP/US (United States), and CIPP/C (Canada).

To earn the CIPP/US credential, you need to pass one 2.5-hour exam with 90 questions. Exam prep options include IAPP training courses available in online, live online, and in-person classroom formats, free study guides, and training from official training partners. IAPP advises all aspiring candidates to read the Certification Candidate Handbook and CPE Policy. To maintain the CIPP, candidates must earn 20 CPEs per term per credential and pay the specified maintenance fee.

Additional information is available online.

Certified Information Privacy Technologist (CIPT)

In 2021, organizations across the world are required to handle and store data in compliance with regulations framed by data protection authorities. Hence, companies need professionals who have the knowledge and skills to design and implement strategies, security policies, methods, and practices to manage security risks, protect data privacy, and ensure judicious data handling for business operations.

CIPT demonstrates in-depth understanding of privacy from a technology perspective — the ability to enable development of secure software products, processes, and services in order to ensure data privacy. CIPT also covers the skills needed to protect data from being compromised in any way, as well as gauging familiarity with the advantages and challenges of new and emerging technologies and the know-how to implement these technologies in such a way as to ensure customer privacy.

Finally, qualified professionals will demonstrate the expertise needed to design software and systems that offer better data privacy, as well as the ability to set up privacy practices, implement information infrastructure audits, and communicate and collaborate with concerned departments.

Also offered by IAPP, the CIPT is accredited under ANSI/ISO standard 17024:2012. To achieve CIPT/US certification, candidates must pass a 2.5-hour exam with 90 questions. The current exam includes two new objectives, Privacy Engineering and Privacy by Design Methodology. IAPP advises all aspiring candidates to read the Exam Blueprint, Body of Knowledge (BoK), and the Certification Candidate Handbook before the exam.

Exam prep options include IAPP training courses available in online, live online, and in-person classroom formats, free study guides, and training from official training partners. IAPP recommends candidates study for at least 30 hours. To maintain the CIPT, candidates must earn 20 CPEs per term per credential and pay the specified maintenance fee.

Additional information is available online.

Certified Information Privacy Manager (CIPM)

Also managed by the IAPP, the CIPM credential focuses on development, implementation, maintenance, and management of a privacy program. It is designed for professionals who execute and manage data privacy regulations in day-to-day operations.

The CIPM exam tests the knowledge and skills required to develop a company vision, organize a privacy team, create and execute a framework for a privacy program, communicate with different stakeholders, and measure performance throughout the privacy program operational lifecycle.

The CIPM is accredited under ANSI/ISO standard 17024:2012. To earn the CIPM certification, you need to pass one 2.5-hour exam with 90 questions. IAPP recommends that candidates prepare for at least 30 hours. Candidates are advised to read the 2020 Certification Candidate Handbook, the Exam Blueprint, and the Body of Knowledge (BoK) prior to the exam.

Preparation resources include IAPP Training classes, textbooks, free study guides, courses from official training partners, and the Glossary of Privacy Terms. To maintain the CIPM, candidates must earn 20 CPEs per term per credential and pay the specified maintenance fee.

Additional information is available online.

PECB-CDPO (Certified Data Protection Officer)

The CDPO certification is managed by PECB, a commercial certification provider accredited by ANSI and IAS. CDPO is designed for professionals with experience in data protection.

PECB-CDPO validates functional knowledge required to apprise and advise the controller and processor on fulfilling GDPR compliance requirements, monitor compliance, and work together with concerned authorities. Exam prep options include a Certified Data Protection Officer training course conducted by PECB. The course includes a practical component.

This credential has ISO/IEC 17024 accreditation. To certify as a PECB Data Protection Officer, candidates are required to pass the specified exam, have at least 5 years of work experience (of which a minimum of 2 years should be in a data protection role), complete 300 hours of data protection activities, and sign the PECB Code of Ethics.

Additional information is available online.

HealthCare Information Security and Privacy Practitioner (HCISPP)

Managed by (ISC)�, the HCISSP certification is suitable for information security professionals who are responsible for safeguarding Protected Health Information (PHI). HCISSP validates expertise in implementing, managing, and evaluating privacy and security controls using policies and processes developed by (ISC)�.

According to (ISC)�, HCISSP is �the only certification that combines cybersecurity skills with privacy best practices and techniques." The HCISSP exam covers 7 domains: healthcare industry, information governance in healthcare, information technologies in healthcare, regulatory and standards environment, privacy and security in healthcare, risk management and risk assessment, and third party risk assessment.

To achieve HCISSP certification, you need to pass a 3-hour multiple-choice exam with a passing score of 700 out of 1000, have a minimum of 2 years of cumulative professional experience in one or more of the 7 domains of the (ISC)� HCISSP Common Body of Knowledge (CBK), complete the endorsement process, commit to the (ISC)� Code of Ethics, and pay the annual maintenance fee.

(ISC)� offers a range of exam prep options, including instructor-led classroom and online training courses, and self-study tools, such as study guides, textbooks, and flash cards. Courses and study materials are also available from Official Training Providers.

Additional information is available online.

Certified Data Privacy Solutions Engineer (CDPSE)

Developed by ISACA, the CDPSE certification is currently in its early adoption phase. The exam is scheduled to be introduced in 2021. According to ISACA, CDPSE is the first experience-based technical credential in the data privacy domain. CDPSE demonstrates knowledge, skills, and experience in privacy governance, privacy architecture, and ATA lifecycle.

Those who wish to apply for certification under the early adoption program must have at least 5 years of professional experience in a minimum of two Exam Content Outline domains. CISA, CISM, CGEIT, CRISC, CSX-P, or FIP credential holders are eligible for a 2-year experience waiver.

To prepare for the exam, aspirants may read the CDPSE Review Manual, which is available in print and ebook versions. ISACA expects to make other study tools, such as Questions, Answers, and Explanations (QAE), an Online Review Course, and virtual training, available in early 2021. To maintain the CDPSE, holders will have to meet ISACA's Continuing Professional Education (CPE) policy requirements.

Additional information is available online.

Also in the Mix

Other data privacy certifications include DSCI Certified Privacy Professional (DCPP), Certified in Data Protection (CDP) from the Identity Management Institute, EXIN Privacy and Data Protection Practitioner, and SECO-Certified Privacy & Data Protection Officer (S-CPDPO).