CIPPUS

Course Learning Objectives

What will you learn?

The course covers seventeen modules:

Module 1: Introduction to privacy

Discusses the modern history of privacy, an introduction to personal information, an overview of data protection roles and a summary of modern privacy frameworks

Module 2: Structure of U.S. law

Reviews the structure and sources of U.S. law and relevant terms, and introduces governmental bodies that have privacy and information security authority

Module 3: General Data Protection Regulation overview

Presents a high-level overview of the GDPR, discuss the significance of the GDPR to U.S. organizations, and summarizes the roles and responsibilities outlined in the law

Module 4: Enforcement of U.S. privacy and security laws

Distinguishes between criminal and civil liability, presents theories of legal liability and describes the enforcement powers and responsibilities of government bodies, such as the FTC and state attorneys general

Module 5: Information management from a U.S. perspective

Explores the development of a privacy program and the role of privacy professionals, discusses vendor management and examines data collection, classification and retention

Module 6: Federal versus state authority

Compares federal and state authority and discusses preemption

Module 7: Healthcare

Describes privacy laws in healthcare, including the major components of HIPAA and the development of HITECH, and outlines privacy protections mandated by other significant healthcare laws

Module 8: Financial privacy

Outlines the goals of financial privacy laws, highlights key concepts of FCRA, FACTA and GLBA, and discusses the Red Flags Rule, Dodd-Frank and consumer protection laws

Module 9: Education

Outlines the privacy rights and protections under FERPA, as well as recent amendments provided by PPRA and NCLBA

Module 10: Telecommunications and marketing Explores rules and regulations of telecommunications entities, reviews laws that govern marketing, and briefly discusses how privacy is addressed in the digital advertising realm

Module 11: Law enforcement and privacy

Summarizes privacy laws on intercepting communication, including how the telecommunications industry must cooperate with law enforcement, and outlines laws that assure rights to financial privacy

Module 12: National security and privacy

Further explores rules and regulations on intercepting communication, including how the laws have evolved and how government agencies and private companies work collaboratively to improve cybersecurity

Module 13: Civil litigation and privacy

Discusses privacy issues related to litigation including electronic discovery, redaction and protective orders, and briefly compares U.S. discovery rules to foreign laws

Module 14: Legal overview of workplace privacy

Describes federal and state laws that regulate and protect employee privacy, as well as federal laws that prohibit discrimination

Module 15: Privacy before, during and after employment

Examines the lifecycle of employee privacy including background screening, employee monitoring, investigating misconduct and termination; outlines antidiscrimination laws; and discusses “bring your own device” policies

Module 16: State data security laws

Identifies state laws that impact data security, reviews Social Security number use regulation and discusses laws governing data destruction

Module 17: Data breach notification laws

Summarizes the scope of state data breach notification law, highlights the nine elements of state data breach notification laws and notes major differences in state laws