{"product_id":"iapp-cipp-us-certified-information-privacy-professional-study-guide-isbn-9781394284900","title":"IAPP CIPP \/ US Certified Information Privacy Professional Study Guide","description":"\u003cp\u003e\u003cb\u003ePrepare for success on the IAPP CIPP\/US exam and further your career in privacy with this effective study guide - now includes a downloadable supplement to get you up to date on the current CIPP exam effective September 2025!\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eInformation privacy has become a critical and central concern for small and large businesses across the United States. At the same time, the demand for talented professionals able to navigate the increasingly complex web of legislation and regulation regarding privacy continues to increase.\u003c\/p\u003e \u003cp\u003eWritten from the ground up to prepare you for the United States version of the Certified Information Privacy Professional (CIPP) exam, Sybex's \u003ci\u003eIAPP CIPP\/US Certified Information Privacy Professional Study Guide\u003c\/i\u003e also readies you for success in the rapidly growing privacy field.\u003c\/p\u003e \u003cp\u003eYou'll efficiently and effectively prepare for the exam with online practice tests and flashcards as well as a digital glossary. The concise and easy-to-follow instruction contained in the \u003ci\u003eIAPP\/CIPP Study Guide\u003c\/i\u003e covers every aspect of the CIPP\/US exam, including the legal environment, regulatory enforcement, information management, private sector data collection, law enforcement and national security, workplace privacy and state privacy law, and international privacy regulation.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eProvides the information you need to gain a unique and sought-after certification that allows you to fully understand the privacy framework in the US\u003c\/li\u003e \u003cli\u003eFully updated to prepare you to advise organizations on the current legal limits of public and private sector data collection and use\u003c\/li\u003e \u003cli\u003eIncludes 1 year free access to the Sybex online learning center, with chapter review questions, full-length practice exams, hundreds of electronic flashcards, and a glossary of key terms, all supported by Wiley's support agents who are available 24x7 via email or live chat to assist with access and login questions\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003ePerfect for anyone considering a career in privacy or preparing to tackle the challenging IAPP CIPP exam as the next step to advance an existing privacy role, the \u003ci\u003eIAPP CIPP\/US Certified Information Privacy Professional Study Guide\u003c\/i\u003e offers you an invaluable head start for success on the exam and in your career as an in-demand privacy professional.\u003c\/p\u003e \u003cp\u003e\u003ci\u003eIntroduction xxi\u003c\/i\u003e\u003c\/p\u003e \u003cp\u003e\u003ci\u003eAssessment Test xxxi\u003c\/i\u003e\u003c\/p\u003e \u003cp\u003e\u003ci\u003eAnswers to Assessment Test xxxv\u003c\/i\u003e\u003c\/p\u003e \u003cp\u003eChapter 1 Privacy in the Modern Era 1\u003c\/p\u003e \u003cp\u003eIntroduction to Privacy 2\u003c\/p\u003e \u003cp\u003eWhat Is Privacy? 3\u003c\/p\u003e \u003cp\u003eWhat Is Personal Information? 4\u003c\/p\u003e \u003cp\u003eWhat Isn’t Personal Information? 5\u003c\/p\u003e \u003cp\u003eWhy Should We Care About Privacy? 7\u003c\/p\u003e \u003cp\u003eGenerally Accepted Privacy Principles 8\u003c\/p\u003e \u003cp\u003eManagement 9\u003c\/p\u003e \u003cp\u003eNotice 9\u003c\/p\u003e \u003cp\u003eChoice and Consent 10\u003c\/p\u003e \u003cp\u003eCollection 10\u003c\/p\u003e \u003cp\u003eUse, Retention, and Disposal 11\u003c\/p\u003e \u003cp\u003eAccess 11\u003c\/p\u003e \u003cp\u003eDisclosure to Third Parties 12\u003c\/p\u003e \u003cp\u003eSecurity for Privacy 12\u003c\/p\u003e \u003cp\u003eQuality 14\u003c\/p\u003e \u003cp\u003eMonitoring and Enforcement 14\u003c\/p\u003e \u003cp\u003eDeveloping a Privacy Program 15\u003c\/p\u003e \u003cp\u003eCrafting Strategy, Goals, and Objectives 15\u003c\/p\u003e \u003cp\u003eAppointing a Privacy Official 16\u003c\/p\u003e \u003cp\u003ePrivacy Roles 17\u003c\/p\u003e \u003cp\u003eBuilding Inventories 18\u003c\/p\u003e \u003cp\u003eConducting a Privacy Assessment 18\u003c\/p\u003e \u003cp\u003eImplementing Privacy Controls 20\u003c\/p\u003e \u003cp\u003eOngoing Operation and Monitoring 20\u003c\/p\u003e \u003cp\u003eOnline Privacy 20\u003c\/p\u003e \u003cp\u003ePrivacy Notices 21\u003c\/p\u003e \u003cp\u003ePrivacy and Cybersecurity 21\u003c\/p\u003e \u003cp\u003eCybersecurity Goals 22\u003c\/p\u003e \u003cp\u003eRelationship Between Privacy and Cybersecurity 23\u003c\/p\u003e \u003cp\u003ePrivacy by Design 24\u003c\/p\u003e \u003cp\u003eSummary 25\u003c\/p\u003e \u003cp\u003eExam Essentials 25\u003c\/p\u003e \u003cp\u003eReview Questions 27\u003c\/p\u003e \u003cp\u003eChapter 2 Legal Environment 31\u003c\/p\u003e \u003cp\u003eBranches of Government 32\u003c\/p\u003e \u003cp\u003eLegislative Branch 32\u003c\/p\u003e \u003cp\u003eExecutive Branch 33\u003c\/p\u003e \u003cp\u003eJudicial Branch 34\u003c\/p\u003e \u003cp\u003eUnderstanding Laws 36\u003c\/p\u003e \u003cp\u003eSources of Law 36\u003c\/p\u003e \u003cp\u003eAnalyzing a Law 41\u003c\/p\u003e \u003cp\u003eLegal Concepts 43\u003c\/p\u003e \u003cp\u003eLegal Liability 44\u003c\/p\u003e \u003cp\u003eTorts and Negligence 45\u003c\/p\u003e \u003cp\u003eSummary 46\u003c\/p\u003e \u003cp\u003eExam Essentials 46\u003c\/p\u003e \u003cp\u003eReview Questions 48\u003c\/p\u003e \u003cp\u003eChapter 3 Regulatory Enforcement 53\u003c\/p\u003e \u003cp\u003eFederal Regulatory Authorities 54\u003c\/p\u003e \u003cp\u003eFederal Trade Commission 54\u003c\/p\u003e \u003cp\u003eFederal Communications Commission 60\u003c\/p\u003e \u003cp\u003eDepartment of Commerce 61\u003c\/p\u003e \u003cp\u003eDepartment of Health and Human Services 61\u003c\/p\u003e \u003cp\u003eBanking Regulators 62\u003c\/p\u003e \u003cp\u003eDepartment of Education 63\u003c\/p\u003e \u003cp\u003eState Regulatory Authorities 63\u003c\/p\u003e \u003cp\u003eSelf-Regulatory Programs 64\u003c\/p\u003e \u003cp\u003ePayment Card Industry 65\u003c\/p\u003e \u003cp\u003eAdvertising 65\u003c\/p\u003e \u003cp\u003eTrust Marks 66\u003c\/p\u003e \u003cp\u003eSafe Harbors 66\u003c\/p\u003e \u003cp\u003eSummary 67\u003c\/p\u003e \u003cp\u003eExam Essentials 68\u003c\/p\u003e \u003cp\u003eReview Questions 69\u003c\/p\u003e \u003cp\u003eChapter 4 Information Management 73\u003c\/p\u003e \u003cp\u003eData Governance 74\u003c\/p\u003e \u003cp\u003eBuilding a Data Inventory 74\u003c\/p\u003e \u003cp\u003eData Classification 75\u003c\/p\u003e \u003cp\u003eData Flow Mapping 77\u003c\/p\u003e \u003cp\u003eData Lifecycle Management 78\u003c\/p\u003e \u003cp\u003eWorkforce Training 79\u003c\/p\u003e \u003cp\u003eCybersecurity Threats 80\u003c\/p\u003e \u003cp\u003eThreat Actors 81\u003c\/p\u003e \u003cp\u003eIncident Response 86\u003c\/p\u003e \u003cp\u003ePhases of Incident Response 86\u003c\/p\u003e \u003cp\u003ePreparation 87\u003c\/p\u003e \u003cp\u003eDetection and Analysis 88\u003c\/p\u003e \u003cp\u003eContainment, Eradication, and Recovery 88\u003c\/p\u003e \u003cp\u003ePost-Incident Activity 88\u003c\/p\u003e \u003cp\u003eBuilding an Incident Response Plan 90\u003c\/p\u003e \u003cp\u003eData Breach Notification 93\u003c\/p\u003e \u003cp\u003eVendor Management 93\u003c\/p\u003e \u003cp\u003eSummary 95\u003c\/p\u003e \u003cp\u003eExam Essentials 95\u003c\/p\u003e \u003cp\u003eReview Questions 97\u003c\/p\u003e \u003cp\u003eChapter 5 Private Sector Data Collection 101\u003c\/p\u003e \u003cp\u003eFTC Privacy Protection 103\u003c\/p\u003e \u003cp\u003eGeneral FTC Privacy Protection 103\u003c\/p\u003e \u003cp\u003eThe Children’s Online Privacy Protection Act (COPPA) 104\u003c\/p\u003e \u003cp\u003eFuture of Federal Enforcement 107\u003c\/p\u003e \u003cp\u003eMedical Privacy 110\u003c\/p\u003e \u003cp\u003eThe Health Insurance Portability and Accountability Act (HIPAA) 111\u003c\/p\u003e \u003cp\u003eThe Health Information Technology for Economic and Clinical Health Act 119\u003c\/p\u003e \u003cp\u003eThe 21st Century Cures Act 120\u003c\/p\u003e \u003cp\u003eConfidentiality of Substance Use Disorder Patient Records Rule 121\u003c\/p\u003e \u003cp\u003eFinancial Privacy 122\u003c\/p\u003e \u003cp\u003ePrivacy in Credit Reporting 122\u003c\/p\u003e \u003cp\u003eGramm–Leach–Bliley Act (GLBA) 125\u003c\/p\u003e \u003cp\u003eRed Flags Rule 129\u003c\/p\u003e \u003cp\u003eConsumer Financial Protection Bureau 130\u003c\/p\u003e \u003cp\u003eEducational Privacy 131\u003c\/p\u003e \u003cp\u003eFamily Educational Rights and Privacy Act (FERPA) 131\u003c\/p\u003e \u003cp\u003eTelecommunications and Marketing Privacy 132\u003c\/p\u003e \u003cp\u003eTelephone Consumer Protection Act (TCPA) and Telemarketing Sales Rule (TSR) 133\u003c\/p\u003e \u003cp\u003eThe Junk Fax Prevention Act (JFPA) 136\u003c\/p\u003e \u003cp\u003eControlling the Assault of Non-solicited Pornography and Marketing (CAN-SPAM) Act 136\u003c\/p\u003e \u003cp\u003eTelecommunications Act and Customer Proprietary Network Information 138\u003c\/p\u003e \u003cp\u003eCable Communications Policy Act 139\u003c\/p\u003e \u003cp\u003eVideo Privacy Protection Act (VPPA) of 1988 140\u003c\/p\u003e \u003cp\u003eDriver’s Privacy Protection Act (DPPA) 141\u003c\/p\u003e \u003cp\u003eDigital Advertising and Data Ethics 142\u003c\/p\u003e \u003cp\u003eWeb Scraping 143\u003c\/p\u003e \u003cp\u003eSummary 143\u003c\/p\u003e \u003cp\u003eExam Essentials 144\u003c\/p\u003e \u003cp\u003eReview Questions 146\u003c\/p\u003e \u003cp\u003eChapter 6 Government and Court Access to Private Sector Information 151\u003c\/p\u003e \u003cp\u003eLaw Enforcement and Privacy 152\u003c\/p\u003e \u003cp\u003eAccess to Financial Data 153\u003c\/p\u003e \u003cp\u003eAccess to Communications 157\u003c\/p\u003e \u003cp\u003eNational Security and Privacy 162\u003c\/p\u003e \u003cp\u003eForeign Intelligence Surveillance Act (FISA) of 1978 162\u003c\/p\u003e \u003cp\u003eFISA Amendments Act Section 702 164\u003c\/p\u003e \u003cp\u003eUSA-PATRIOT Act 165\u003c\/p\u003e \u003cp\u003eThe USA Freedom Act of 2015 167\u003c\/p\u003e \u003cp\u003eThe Cybersecurity Information Sharing Act of 2015 168\u003c\/p\u003e \u003cp\u003eCivil Litigation and Privacy 169\u003c\/p\u003e \u003cp\u003eCompelled Disclosure of Media Information 170\u003c\/p\u003e \u003cp\u003eElectronic Discovery 171\u003c\/p\u003e \u003cp\u003eSummary 173\u003c\/p\u003e \u003cp\u003eExam Essentials 173\u003c\/p\u003e \u003cp\u003eReview Questions 175\u003c\/p\u003e \u003cp\u003eChapter 7 Workplace Privacy 179\u003c\/p\u003e \u003cp\u003eIntroduction to Workplace Privacy 180\u003c\/p\u003e \u003cp\u003eWorkplace Privacy Concepts 180\u003c\/p\u003e \u003cp\u003eU.S. Agencies Regulating Workplace Privacy Issues 181\u003c\/p\u003e \u003cp\u003eU.S. Antidiscrimination Laws 182\u003c\/p\u003e \u003cp\u003ePrivacy Before, During, and After Employment 185\u003c\/p\u003e \u003cp\u003eAutomated Employment Decision Tools 186\u003c\/p\u003e \u003cp\u003eEmployee Background Screening 186\u003c\/p\u003e \u003cp\u003eEmployee Monitoring 190\u003c\/p\u003e \u003cp\u003eInvestigation of Employee Misconduct 194\u003c\/p\u003e \u003cp\u003eTermination of the Employment Relationship 196\u003c\/p\u003e \u003cp\u003eSummary 197\u003c\/p\u003e \u003cp\u003eExam Essentials 198\u003c\/p\u003e \u003cp\u003eReview Questions 200\u003c\/p\u003e \u003cp\u003eChapter 8 State Privacy Laws 205\u003c\/p\u003e \u003cp\u003eFederal Versus State Authority 206\u003c\/p\u003e \u003cp\u003eElements of State Privacy Laws 207\u003c\/p\u003e \u003cp\u003eApplicability 207\u003c\/p\u003e \u003cp\u003eData Subject Rights 208\u003c\/p\u003e \u003cp\u003ePrivacy Notice Requirements 209\u003c\/p\u003e \u003cp\u003eData Protection 209\u003c\/p\u003e \u003cp\u003eEnforcement 211\u003c\/p\u003e \u003cp\u003eData Breach Notification 212\u003c\/p\u003e \u003cp\u003eElements of State Data Breach Notification Laws 212\u003c\/p\u003e \u003cp\u003eKey Differences Among States 214\u003c\/p\u003e \u003cp\u003eSignificant Developments 215\u003c\/p\u003e \u003cp\u003eOther Recent Updates to State Breach Notification Laws 218\u003c\/p\u003e \u003cp\u003eComprehensive State Privacy Laws 220\u003c\/p\u003e \u003cp\u003eCalifornia Consumer Privacy Act (2018) and California Privacy Rights Act (2020) 220\u003c\/p\u003e \u003cp\u003eVirginia Consumer Data Protection Act 223\u003c\/p\u003e \u003cp\u003eColorado Privacy Act 226\u003c\/p\u003e \u003cp\u003eConnecticut Data Privacy Act 229\u003c\/p\u003e \u003cp\u003eUtah 231\u003c\/p\u003e \u003cp\u003eFlorida 232\u003c\/p\u003e \u003cp\u003eOregon 234\u003c\/p\u003e \u003cp\u003eTexas 237\u003c\/p\u003e \u003cp\u003eMontana 239\u003c\/p\u003e \u003cp\u003eSubject-Specific State Privacy Laws 241\u003c\/p\u003e \u003cp\u003eHealth and Genetic Information 241\u003c\/p\u003e \u003cp\u003eOnline Privacy 243\u003c\/p\u003e \u003cp\u003eBiometric Information Privacy Regulations 247\u003c\/p\u003e \u003cp\u003eAI and Automated Decision-Making 249\u003c\/p\u003e \u003cp\u003eData Brokers 250\u003c\/p\u003e \u003cp\u003eFinancial Privacy 251\u003c\/p\u003e \u003cp\u003eCalifornia Financial Information Privacy Act 252\u003c\/p\u003e \u003cp\u003eRecent Developments 253\u003c\/p\u003e \u003cp\u003eMarketing Laws 254\u003c\/p\u003e \u003cp\u003eSummary 255\u003c\/p\u003e \u003cp\u003eExam Essentials 256\u003c\/p\u003e \u003cp\u003eReview Questions 258\u003c\/p\u003e \u003cp\u003eChapter 9 International Privacy Regulation 263\u003c\/p\u003e \u003cp\u003eInternational Data Transfers 264\u003c\/p\u003e \u003cp\u003eEuropean Union General Data Protection Regulation 265\u003c\/p\u003e \u003cp\u003eAdequacy Decisions 268\u003c\/p\u003e \u003cp\u003eBinding Corporate Rules 272\u003c\/p\u003e \u003cp\u003eStandard Contractual Clauses 273\u003c\/p\u003e \u003cp\u003eOther Approved Transfer Mechanisms 273\u003c\/p\u003e \u003cp\u003eAPEC Privacy Framework 274\u003c\/p\u003e \u003cp\u003eCross-Border Enforcement Issues 276\u003c\/p\u003e \u003cp\u003eGlobal Privacy Enforcement Network 276\u003c\/p\u003e \u003cp\u003eResolving Multinational Compliance Conflicts 276\u003c\/p\u003e \u003cp\u003eSummary 277\u003c\/p\u003e \u003cp\u003eExam Essentials 277\u003c\/p\u003e \u003cp\u003eReview Questions 279\u003c\/p\u003e \u003cp\u003eAppendix Answers to Review Questions 283\u003c\/p\u003e \u003cp\u003eChapter 1: Privacy in the Modern Era 284\u003c\/p\u003e \u003cp\u003eChapter 2: Legal Environment 285\u003c\/p\u003e \u003cp\u003eChapter 3: Regulatory Enforcement 287\u003c\/p\u003e \u003cp\u003eChapter 4: Information Management 289\u003c\/p\u003e \u003cp\u003eChapter 5: Private Sector Data Collection 291\u003c\/p\u003e \u003cp\u003eChapter 6: Government and Court Access to Private Sector Information 293\u003c\/p\u003e \u003cp\u003eChapter 7: Workplace Privacy 294\u003c\/p\u003e \u003cp\u003eChapter 8: State Privacy Laws 296\u003c\/p\u003e \u003cp\u003eChapter 9: International Privacy Regulation 298\u003c\/p\u003e \u003cp\u003e\u003ci\u003eIndex 301\u003c\/i\u003e\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eABOUT THE AUTHORS\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003e\u003cb\u003eMike Chapple, PhD, CIPP\/US,\u003c\/b\u003e is Teaching Professor of Information Technology, Analytics, and Operations at Notre Dame’s Mendoza College of Business. He is the bestselling author of over 25 technical books. He is also the Academic Director of the University’s Master of Science in Business Analytics program. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eJoe Shelley, CIPP\/US,\u003c\/b\u003e is the Vice President for Libraries and Information Technology at Hamilton College in New York. He oversees the information security and privacy programs, IT risk management, business intelligence and analytics, and data governance.   \u003c\/p\u003e\u003cp\u003e\u003cb\u003eA comprehensive resource for practicing and aspiring privacy and compliance professionals\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eThe newly revised second edition of the \u003ci\u003eIAPP® CIPP\/US® Certified Information Privacy Professional Study Guide\u003c\/i\u003e is an intuitive roadmap to succeeding on one of the most sought-after privacy certifications on the global market. Emphasizing hands-on learning and real-world applications, the \u003ci\u003eStudy Guide\u003c\/i\u003e covers every competency tested on the challenging CIPP exam. As with every Sybex study guide, this book includes online practice tests, complimentary access to electronic flashcards and an online glossary of common terms. It’s the perfect guide for improving your on-the-job and exam performance. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eCoverage of 100% of all exam objectives in this \u003ci\u003eStudy Guide\u003c\/i\u003e means you’ll be ready for:\u003c\/b\u003e \u003c\/p\u003e\u003cul\u003e\n\u003cli\u003eIntroduction to the U.S. Privacy Environment\u003c\/li\u003e\n\u003cli\u003eLimits on Private-sector Collection and Use of Data\u003c\/li\u003e\n\u003cli\u003eGovernment and Court Access to Private-sector Information\u003c\/li\u003e\n\u003cli\u003eWorkplace Privacy\u003c\/li\u003e\n\u003cli\u003eState Privacy Laws\u003c\/li\u003e\n\u003c\/ul\u003e \u003cp\u003e\u003cb\u003eABOUT THE CIPP PROGRAM\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eThe Certified Information Privacy Professional (CIPP) certification from the International Association of Privacy Professionals (IAPP) is the most versatile and best-known global certification for privacy and data protection. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eInteractive learning environment \u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eTake your exam prep to the next level with Sybex’s superior interactive online study tools. To access our learning environment, simply visit \u003cb\u003ewww.wiley.com\/go\/sybextestprep,\u003c\/b\u003e follow the instructions to register your book, and instantly gain one year of FREE access after activation to: \u003c\/p\u003e\u003cp\u003e\u003cb\u003e• Interactive test bank \u003c\/b\u003ewith 2 practice exams to help you identify areas where further review is needed. Get more than 90% of the answers correct, and you’re ready to take the certification exam. \u003c\/p\u003e\u003cp\u003e\u003cb\u003e• More than 100 electronic flashcards \u003c\/b\u003eto reinforce learning and last-minute prep before the exam. \u003c\/p\u003e\u003cp\u003e\u003cb\u003e• Comprehensive glossary\u003c\/b\u003e in PDF format gives you instant access to the key terms so you are fully prepared. \u003c\/p\u003e\u003cp\u003e\u003cb\u003e• Audio review\u003c\/b\u003e of Exam Essentials for each chapter narrated by Mike Chapple.\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989396963557,"sku":"NP9781394284900","price":55.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781394284900.jpg?v=1761783951","url":"https:\/\/k12savings.com\/es\/products\/iapp-cipp-us-certified-information-privacy-professional-study-guide-isbn-9781394284900","provider":"K12savings","version":"1.0","type":"link"}