CIPM focuses on the practical aspects of running a privacy program. CIPP/E on the other hand gives background and knowledge on the legal aspects. I would recommend to also take the CIPP/E for a better and deeper understanding of the field.
The certiications offered by IAPP are a great place to start. In addition, the Certified DPO programs offered by Maastricht University provides an outstaning educational experience and it is well respected.
I would start with the CIPP/E as that covers the details of the regulation and the implementation. The CIPM is basically the privacy version of running a master data management project, so if you have done that then you will breeze it. CIPM is far more common sense along with learning the terminology for the exam. If I interviewed me and you could tell me how to implement a privacy program but couldn’t tell me what “lawful basis” meant I would be unlikely to employ you. Saying that, you don’t need either of the qualifications if you have the knowledge and experience anyway. The letters after your name are a way to get to the first interview stage by people who don’t understand privacy. It’s often those people that make the first or final decision.
Hi! I also agree that CIPM is more about planing and executing a privacy management program. Personally I took the CIPP/E 2 years ago and currently I am studying for the CIPM. CIPP series of certifications (whether it is CIPP/E, CIPP/US etc-depending on your jurisdiction) I consider them to be a good start to understand the legal environment before you move on to the management of operational part of the privacy program. Holding both certifications is a really good combo 🙂
I would say that the CIPM is a really good place to start, particularly if you pair it with something like the training from Kristy Grant-Hart on risk management and how to be an efffective/strategic compliance officer. Knowing the law is really important, but to be a valuable company asset you have to be able to see the organisation as a whole and how to get it to journey with you to a data protection landscape that looks good to them.
Magnus T
Hi!
CIPM focuses on the practical aspects of running a privacy program. CIPP/E on the other hand gives background and knowledge on the legal aspects. I would recommend to also take the CIPP/E for a better and deeper understanding of the field.
scott
The certiications offered by IAPP are a great place to start. In addition, the Certified DPO programs offered by Maastricht University provides an outstaning educational experience and it is well respected.
Tash
could not agree more. That DPO course was the best course I have done
Tash
I would start with the CIPP/E as that covers the details of the regulation and the implementation. The CIPM is basically the privacy version of running a master data management project, so if you have done that then you will breeze it. CIPM is far more common sense along with learning the terminology for the exam. If I interviewed me and you could tell me how to implement a privacy program but couldn’t tell me what “lawful basis” meant I would be unlikely to employ you. Saying that, you don’t need either of the qualifications if you have the knowledge and experience anyway. The letters after your name are a way to get to the first interview stage by people who don’t understand privacy. It’s often those people that make the first or final decision.
Elisavet D.
Hi! I also agree that CIPM is more about planing and executing a privacy management program. Personally I took the CIPP/E 2 years ago and currently I am studying for the CIPM. CIPP series of certifications (whether it is CIPP/E, CIPP/US etc-depending on your jurisdiction) I consider them to be a good start to understand the legal environment before you move on to the management of operational part of the privacy program. Holding both certifications is a really good combo 🙂
HellenB
I would say that the CIPM is a really good place to start, particularly if you pair it with something like the training from Kristy Grant-Hart on risk management and how to be an efffective/strategic compliance officer. Knowing the law is really important, but to be a valuable company asset you have to be able to see the organisation as a whole and how to get it to journey with you to a data protection landscape that looks good to them.