IAPP CIPM Training and Certification

Gain a globally recognised privacy certification with the IAPP Certified Information Privacy Manager qualification

As an Official Training Partner of the International Association of Privacy Professionals (IAPP), Simply Privacy offers the well established and globally recognised Certified Information Privacy Manager (CIPM) training and certification.

Delivered online over four days, the CIPM training and certification will provide you with the knowledge and credential that says that you’re a leader in privacy program administration and that you’ve got the goods to establish, maintain and manage a privacy program across all stages of its life cycle.  It will provide you with the skills to design, build and develop a comprehensive privacy programme.

Our experienced facilitator, Emma Pond, will deliver this training.  Emma is a highly experienced privacy professional, with 20+ years of experience in advising on privacy across the public, private and community sectors, including delivering privacy training.

What is CIPM?

The CIPM is the world’s first and only certification in information privacy management. Developed by the International Association of Privacy Professionals (IAPP), the CIPM certification is accredited under ISO 17024: 2012.

When you earn a CIPM, you are demonstrating that you know how to develop a privacy programme and make it practically work for your organisation. The CIPM course helps you to learn about privacy regulation and how to apply those regulations on a day to day operational basis in your organisation.

This course is ideal for Privacy Officers and others who have responsibility for privacy and data protection compliance in their organisation. The training will be limited to small numbers to allow for interaction and participation.This training course leads to a certification upon successful completion of the CIPM exam.

Please note that you will need to do your own study of the CIPM materials in addition to this training to have the best chance at success in the exam – IAPP recommends an additional 30 hours of study.  The training will be limited to small numbers to allow for interaction and participation.

What wilI I learn? 

The course is broken into ten modules:

Module 1: Introduction to privacy programme management
Identifies privacy programme management responsibilities, and describes the role of accountability in privacy programme management.

Module 2: Privacy governance
Examines considerations for developing and implementing a privacy programme, including the position of the privacy function within the organisation, role of the Privacy Officer/DPO, programme scope and charter, privacy strategy, support and ongoing involvement of key functions and privacy frameworks.

Module 3: Applicable laws and regulations
Discusses the regulatory environment, common elements across jurisdictions and strategies for aligning compliance with organisational strategy.

Module 4: Data assessments
Relates practical processes for creating and using data inventories/maps, gap analyses, privacy assessments, privacy impact assessments/data protection impact assessments and vendor assessments.

Module 5: Protecting personal information
Examines a holistic approach to protecting personal information through privacy by design.

Module 6: Policies
Describes common types of privacy-related policies, outlines components and offers strategies for implementation.

Module 7: Monitoring and auditing program performance
Relates common practices for monitoring, measuring, analysing and auditing privacy programme performance.

Module 8: Training and awareness
Outlines strategies for developing and implementing privacy training and awareness programmes.

Module 9: Data subject rights
Discusses operational considerations for communicating and ensuring data subject rights, including privacy notice, choice and consent, access and correction, data portability, and erasure and the right to be forgotten.

Module 10: Data Breach incident plans
Provides guidance on planning for and responding to a data security incident or breach.

More detail about the concepts and topics that will be covered can be found here and in the CIPM Book of Knowledge.

Information about the training and certification programme can be found in the IAPP Candidate Handbook.

What’s the difference between the CIPM and the Privacy Officer Toolkit Workshop? 

The Privacy Officer Toolkit Workshop is Simply Privacy’s own training programme for new Privacy Officers.  A shorter course than the CIPM (6 hours across two days), it provides a baseline introduction to the role of the Privacy Officer in the NZ context for people who are new to that role.  It is suitable for all sizes and types of organisations.

The CIPM on the other hand focuses more on developing and implementing a privacy programme within an organisation that will enable and support privacy compliance with NZ and overseas privacy laws, and is more relevant for privacy professionals who have some privacy experience and who are working in organisations that are larger and/or have a higher privacy risk.  The CIPM also offers the opportunity to gain a globally recognised privacy credential.

How and when will Simply Privacy be offering the training?

Delivery – Online (live virtual classroom) course over four half days.

Next dates – 5,6,12 and13 September 2024,  9.30am – 1pm NZT each day.

Contact us at for information about registering, for additional dates or to request tailored training for your organisation.

What about the exam?

The CIPM exam is a three hour stand-alone assessment designed to determine professional competence and experience. It can be scheduled at a date and location to suit you. Information about how to prepare for IAPP exams can be found here. In general, the IAPP recommends training plus studying for a minimum of 30 hours to prepare for the exam.

How much does it cost? 

NZD $2850 + GST, including:

  • CIPM training
  • Comprehensive course notes/participant guide
  • A certificate of attendance
  • CIPM exam voucher and sample exam questions
  • One year’s membership of IAPP (or a 12 month extension if you are already an IAPP member)

Please note:

  • Bookings are final once paid for and confirmed.
  • If you are unable to attend a confirmed training session for any reason, we will endeavour to book you on a subsequent course at no additional cost.
  • Refunds will only be offered in the unlikely situation where circumstances outside our control require us to cancel a training course. Otherwise we will use all reasonable endeavours to re-schedule any such course to an alternative date.

I have more questions – who do I ask?

Please contact Emma Pond at if you have any questions about the training or the certification, or if you want to discuss other training options (including the provision of tailored in-house training).