Sunteți pe pagina 1din 2
v. 2.0.0.7 The examination blueprint indicates the minimum and maximum number of question items that

v. 2.0.0.7

v. 2.0.0.7 The examination blueprint indicates the minimum and maximum number of question items that are
v. 2.0.0.7 The examination blueprint indicates the minimum and maximum number of question items that are
v. 2.0.0.7 The examination blueprint indicates the minimum and maximum number of question items that are

The examination blueprint indicates the minimum and maximum number of question items that are included on the CIPP/US examination from the major areas of the Body of Knowledge. Questions may be asked from any of the listed topics under each area. You can use this blueprint to guide your preparation for the CIPP/US examination. For example, over half of the 60 questions on the CIPP/US examination come from domains I and II.

I. Introduction to the U.S. Privacy Environment

15

20

 

A. Structure of U.S. Law

4

6

Branches of government, sources of law, legal definitions, regulatory authorities, understanding laws

B. Enforcement of U.S. Privacy and Security Laws

2

4

Criminal vs. civil liability, general theories of legal liability

C. Information Management from a U.S. Perspective

8

10

Data classification, privacy program development, incident response programs, training, accountability, data retention and disposal (FACTA), vendor management, international data transfers, other key consideration for U.S.-based multinational companies, resolving multinational compliance conflicts

II. Limits on Private-sector Collection and Use of Data

14

18

 

A. Cross-sector FTC Privacy Protection

4

6

The FTC Act, FTC privacy enforcement actions, FTC security enforcement actions, COPPA

B. Healthcare

2

4

HIPAA, HITECH, GINA

C. Financial

3

5

FCRA, FACT Act, GLBA, Red Flags Rules, Dodd-Frank, CFPB

D. Education

1

3

FERPA

E. Telecommunications and Marketing

2

4

v. 2.0.0.7 III. Government and Court Access to Private-sector Information 6 10   A. Law

v. 2.0.0.7

III.

Government and Court Access to Private-sector Information

6

10

 

A. Law Enforcement and Privacy

3

5

 

Access to financial data, access to communications, CALEA

 

B. National Security and Privacy

1

3

 

FISA, USA-Patriot Act

 

C. Civil Litigation and Privacy

2

4

 

Compelled disclosure of media information, electronic discovery

IV.

Workplace Privacy

7

11

 

A. Overview of workplace privacy

3

5

 

Workplace privacy concepts, U.S. agencies regulating workplace privacy issues, U.S. anti-discrimination laws

 

B. Privacy before, during and after employment

4

6

 

Employee background screening, employee monitoring, investigation of employee misconduct, termination of employment relationship, working with third parties

V. State Privacy Laws

7

11

 

A. Federal vs. state authority

1

3

B. Marketing laws

0

2

C. Financial data

0

2

D. Data security laws

1

3

E. Data breach notification laws

1

3

F. Anti-bullying laws

0

2