Course Outline:
The CDPSE certification validates privacy technologists’ ability to implement privacy by design solutions into new
and existing networks, platforms and products, building customer and stakeholder trust and mitigating risks of
noncompliance.
There are 120 Questions on the exam which must be completed in 3.5 hours. It is available online via remote proctoring
and at in-person testing centers where available.
The CDPSE certification is intended for:
IT Professionals who implement first line of defense in data breaches and provide technical privacy solutions including:
• Lead Software Engineer Data and System Privacy
• Domain Architect (Legal Care Compliance, Privacy)
• Security and Privacy Engineer
• Privacy Solutions Architect
• IT Project Manager
• Privacy Data Scientist
• Privacy Analyst
• Lead Privacy Manager
CPE Overview:
To maintain your CDPSE, you must earn and report a minimum of 120 CPE hours every 3-year reporting cycle and at least
20 hours annually. CDPSE awards up to 1 hour of CPE for every 1 hour of instructor-led training. Online review course
earns 20 CPEs and the Virtual Instructor-Led Training (VILT) earns 14 CPEs.
Course Duration:
In-person training: 4 days
Course Topics:
Domain 1: Privacy Governance
Governance
• Personal Data and Information
• Privacy Laws and Standards across Jurisdictions
• Privacy Documentation
• Legal Purpose, Consent and Legitimate Interest
• Data Subject Rights
Management
• Roles and Responsibilities Related to Data
• Privacy Training and Awareness
• Vendor and Third-party Management
• Audit Process
• Privacy Incident Management
• Risk Management
• Risk Management Process
Domain 2: Privacy Architecture
Infrastructure
• Cloud Computing
• Remote Access
• Endpoints
• System Hardening
• Secure Development Life Cycle
Applications and Software
• Application and Software Hardening
• APIs and Services
• Tracking Technologies
Technical Privacy Controls
• Communication and Transport Protocols
• Encryption, Hashing and De-identification
• Key Management
• Monitoring and Logging
• Identity and Access Management
Domain 3: Data Lifecycle
Data Purpose
• Data Inventory and Classification
• Data Quality
• Data Flow and Usage Diagrams
• Data Use Limitation
• Data Analytics
Data Persistence
• Data Minimization
• Data Migration
• Data Storage
• Data Warehousing
• Data Retention and Archiving
• Data Destruction
