Exam Objectives:
The Certified Information Privacy Professional/United States (CIPP/US) exam is designed to assess a candidate's knowledge and understanding of privacy laws, regulations, and best practices in the United States. The exam covers the following topics:
- The US legal framework for privacy
- Types of information covered by privacy laws
- The role of the Federal Trade Commission (FTC)
- The Health Insurance Portability and Accountability Act (HIPAA)
- The Children's Online Privacy Protection Act (COPPA)
- The Gramm-Leach-Bliley Act (GLBA)
- The Fair Credit Reporting Act (FCRA)
- The Electronic Communications Privacy Act (ECPA)
- The California Consumer Privacy Act (CCPA)
- The General Data Protection Regulation (GDPR) and its impact on US companies
- Privacy program governance
- Privacy risk management
- Privacy operations
- Privacy technology
- US privacy professionals and their roles
Exam Details:
The CIPP-US exam consists of 90 multiple-choice questions, and candidates have 2.5 hours to complete the exam. The exam is computer-based and is administered at Pearson VUE testing centers. The cost of the exam is $550 USD for non-IAPP members and $425 USD for members. The passing score for the exam is 300 out of 500.
Related Books:
There are several books and resources available that can help candidates prepare for the CIPP-US exam. These include:
- CIPP/US Certification Guide: Preparing for the IAPP Certified Information Privacy Professional/United States Exam by Brian Philbrook and Duncan McFetridge
- The Privacy Engineer's Manifesto: Getting from Policy to Code to QA to Value by Michelle Dennedy, Jonathan Fox, and Thomas Finneran
- The Art of Access: Strategies for Acquiring Public Records by David Cuillier and Charles Davis
- Privacy Law Fundamentals by Daniel Solove
- Understanding Privacy by Daniel Solove
- Privacy in the New Media Age by Jon L. Mills and Ellen C. Turk
To pass the CIPP-US exam, candidates should focus on understanding the US legal framework for privacy, as well as the specific laws and regulations that apply to different types of information and industries. Candidates should also be familiar with privacy program governance, risk management, operations, and technology. It is recommended that candidates use a variety of study materials, including books, online resources, and practice exams, to prepare for the exam.