An fiscal


Data Protection Officer (DPO) Training Bundle

Enabling you to manage privacy compliance effectively

The General Data Protection Regulation (GDPR) requires that many organisations appoint a Data Protection Officer (DPO). The International Association of Privacy Professionals (IAPP) estimates that more than 75,000 DPOs will be required in the coming months. Are you DPO Ready? Whether you are taking your first step of awareness, or are ready for certification as a data protection professional, Deloitte is here to help you along the way.

Certified Information Privacy Professional/Europe (CIPP/E)

Principles of Data Protection in Europe covers the essential pan-European and national data protection laws, as well as industry-standard best practices for corporate compliance with these laws. Those taking this course will gain an understanding of the European model for privacy enforcement, key privacy terminology and practical concepts concerning the protection of personal data and trans-border data flows.

The training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Professional/Europe (CIPP/E) certification program.

What You'll Learn?

• Introduction to European Data Protection

• European Regulatory Institutions

• Legislative Framework

• Compliance with European Data Protection Law and Regulation

• International Data Transfers

Target audience:

• Data Protection Officers

• Data Protection Lawyers

• Records Managers

• Information Officers

• Compliance Officers

• Human Resource Officers

• Anyone who uses, processes and maintains personal data


Certified Information Privacy Manager (CIPM)

Principles of Privacy Program Management is the how-to training on implementing a privacy program framework, managing the privacy program operational lifecycle and structuring a knowledgeable, high-performing privacy team. Those taking this course will learn the skills to manage privacy in an organization through process and technology—regardless of jurisdiction or industry.

The Principles of Privacy Program Management training is based on the body of knowledge for the IAPP’s ANSI accredited Certified Information Privacy Manager (CIPM) certification program.

What You'll Learn?

• How to create a company vision

• How to structure the privacy team

• How to develop and implement a privacy program framework

• How to communicate to stakeholders

• How to measure performance

• The privacy program operational lifecycle

Target audience:

• Data Protection Officers

• Data Protection Managers

• Auditors

• Legal Compliance Officers

• Security Manager

• Information Managers

• Anyone involved with data protection processes and programmes


Course design

The Data Protection Officer Course runs over four consecutive days. 

The course is fully hands-on with lots of different business scenarios as well as practical tools you can take home for immediate use on the job.

Each day, a number of useful tips will be given to help you with the exam afterwards.

Course Content
Certified Information Privacy Manager (CIPM)

Module 1: Data Protection Laws. Introduces key European data protection laws and regulatory bodies, describing the evolution toward a harmonised legislative framework.

Module 2: Personal Data. Defines and differentiates between types of data, including personal, anonymous, pseudo-anonymous and special categories.

Module 3: Controllers and Processors: Describes the roles and relationships of controllers and processors.

Module 4: Processing Personal Data. Defines data processing and GDPR processing principles, explains the application of the GDPR and outlines the legitimate bases for processing personal data.

Module 5: Information Provision. Explains controller obligations for providing information about data processing activities to data subjects and supervisory authorities.

Module 6: Data Subjects’ Rights. Describes data subjects’ rights, applications of rights and controller and processor obligations.

Module 7: Security of Processing. Discusses considerations and duties of controllers and processors for ensuring security of personal data and providing notification of data breaches.

Module 8: Accountability. Investigates accountability requirements, including data protection management systems, data protection impact assessments, privacy policies and the role of the data protection officer.

Module 9: International Data Transfers. Outlines options and obligations for transferring data outside the European Economic Area, including adequacy decisions and appropriate safeguards and derogations.

Module 10: Supervisions and Enforcement. Describes the role, powers and procedures of supervisory authorities; the composition and tasks of the European Data Protection Board; the role of the European Data Protection Supervisor; and remedies, liabilities and penalties for non-compliance.

Module 11: Compliance. Discusses the applications of European data protection law, legal bases and compliance requirements for processing personal data in practice, including employers processing employee data, surveillance, direct marketing, Internet technology and communications and outsourcing.


Certified Information Privacy Manager (CIPM)

Module 1: Fundamentals of Information Privacy

  • Unit 1: Common Principles and Approaches to Privacy. This unit includes a brief discussion of the modern history of privacy, an introduction to types of information, an overview of information risk management and a summary of modern privacy principles.
  • Unit 2: Jurisdiction and Industries. This unit introduces the major privacy models employed around the globe and provides an overview of privacy and data protection regulation by jurisdictions and industry sectors.
  • Unit 3: Information Security. Safeguarding Personal Information This unit presents introductions to information security, including definitions, elements, standards and threats/ vulnerabilities, as well as introductions to information security management and governance, including frameworks, controls, cryptography and identity and access management (IAM).
  • Unit 4: Online Privacy: Using Personal Information on Websites and with Other Internet-related Technologies. This unit examines the web as a platform, as well as privacy considerations for sensitive online information, including policies and notices, access, security, authentication and data collection. Additional topics include children’s online privacy, email, searches, online marketing and advertising, social media, online assurance, cloud computing and mobile devices.

Module 2: Privacy Program Management

This program is broken into two segments: the first illustrates important practices in managing privacy, and the second is an interactive format in which participants apply these practices to a real-world scenario.

  • Unit 1: Privacy Program Governance. This unit reveals how to create a privacy program at an organizational level, develop and implement a framework and establish metrics to measure program effectiveness. Topics include: creating a company vision for its privacy program; establishing a privacy program that aligns to the business; structuring the privacy team; developing organizational privacy policies, standards and guidelines; defining privacy program activities; and defining program metrics.
  • Unit 2: Privacy Operational Life Cycle. This substantial unit reviews privacy program practices employed throughout the privacy life cycle—assess, protect, sustain and respond. Topics include: documenting the privacy baseline of the organization; data processors and third-party vendor assessments; physical assessments; mergers, acquisitions and divestitures; privacy threshold analysis; privacy impact assessments; information security practices; Privacy by Design; integrating privacy requirements across the organization; auditing your privacy program; creating awareness of the organization’s privacy program; compliance monitoring; handling information requests; and handling privacy incidents.


Practical information

Price (CIPP/E + CIPM): € 2,800 (excl. VAT) 

Course language: English


All the participants will be receiving:
  • Complimentary 1st year IAPP Professional membership
  • Official Textbooks
  • Sample exam questions
  • Examination vouchers



XXX – certified IAPP trainers


Contact person:


Mobil: +XXX

E-mail: XXX

Subscribe here to be notified about Deloitte Romania events and publications of your choice.