Introduction to Resource Center
This page provides an overview of the IAPP's Resource Center offerings.

Contact Resource Center
For any Resource Center related inquiries, please reach out to resourcecenter@iapp.org.

Privacy Program Operations
 

Resource Center / Topic Pages / Privacy Program Operations

Image

Privacy Program Operations

TOPIC PAGE

Navigate Page

On this topic page, you can find the IAPP’s collection of coverage, analysis and resources covering privacy program operations.

  • expand_more

    Related content

    Privacy Program Management

    This IAPP textbook for the Certified Information Privacy Manager (CIPM) program provides critical knowledge for managing privacy program governance and operations.
    View here

    Strategic Privacy by Design
    This IAPP textbook contains a methodology for building privacy into a product, service, or business process.
    View here

Back to top

News Articles

Privacy Program Operations

View all News Articles

Key considerations when setting up model data protection clauses

NEWS ARTICLE

The shadow data market: Privacy risks lurking in forgotten information

NEWS ARTICLE

How to implement effective privacy training

NEWS ARTICLE

10 areas for US-based privacy programs to focus in 2025

NEWS ARTICLE

New tools aim to improve data activity monitoring, compliance efficiency

NEWS ARTICLE

It’s time to secure user data in your identity system

NEWS ARTICLE

US Senate subcommittee ponders accountability for AI-assisted scams

NEWS ARTICLE

AI accountability: Considerations for privacy professionals

NEWS ARTICLE

Why terms of service should be on your AI governance radar

NEWS ARTICLE

UK ICO releases Privacy Notice Generator for SMEs

NEWS ARTICLE

So you want to adopt AI …

NEWS ARTICLE

ISO standard offers AI Management System template

NEWS ARTICLE

Big questions for small businesses in the American Privacy Rights Act

NEWS ARTICLE

A question of identification: Protecting against ‘anonymized’ targeting

NEWS ARTICLE

Data minimization: An increasingly global concept

NEWS ARTICLE

Building a privacy layer for AI

NEWS ARTICLE

Understanding marketing privacy: Overlooked aspects, key questions and practical audits

NEWS ARTICLE

How to build a ROPA to fit business, privacy needs

NEWS ARTICLE

Taming the beast: 7 tips for privacy professionals to facilitate responses to DSARs, reduce risk and build trust

NEWS ARTICLE

Building a modern data protection technology stack

NEWS ARTICLE

Five compliance best practices for a successful AI governance program

NEWS ARTICLE

Evaluating the use of AI in privacy program operations

NEWS ARTICLE

Rethinking the role of CPOs: Prioritizing operationalizing privacy controls over legal expertise

NEWS ARTICLE

Building effective AI through collaboration

NEWS ARTICLE

From overlooked to optimized: Revolutionizing data-retention practices

NEWS ARTICLE

A view from DC: Can there be accountability for web scrapers?

NEWS ARTICLE

Spilling the tea on AI accountability: An analysis of NTIA stakeholder comments

NEWS ARTICLE

Managing downstream risks of ‘do not sell’ fulfillment

NEWS ARTICLE

The definition of ‘anonymization’ is changing in the EU: Here’s what that means

NEWS ARTICLE

The latest dimension of the global race for an AI governance framework

NEWS ARTICLE

Launching an AI governance program? Start with your ‘why’

NEWS ARTICLE

Top issues to address when using automated employment decision-making tools

NEWS ARTICLE

Unlawful data processing claims: An insurance perspective

NEWS ARTICLE

New options for anonymization ahead?

NEWS ARTICLE

Shifting to first-party data: Privacy pitfalls around consent and transparency

NEWS ARTICLE

A new standard for anonymization

NEWS ARTICLE

Redefining data mapping

NEWS ARTICLE

How machine learning can help small businesses deal with data privacy compliance

NEWS ARTICLE

Privacy: An organization’s responsibility for building trustworthy systems

NEWS ARTICLE

Running a privacy law-compliant inclusion and diversity data collection program globally

NEWS ARTICLE

Assessing risk: Determining the appropriate risk flags for your privacy risk assessments

NEWS ARTICLE

US House subcommittee talks proposed surveillance ad ban, Big Tech accountability

NEWS ARTICLE

Ransomware: 5 critical tips for organizations

NEWS ARTICLE

2023 here we come: How to prepare your privacy program

NEWS ARTICLE

Measuring global diversity and inclusion: The art of the possible

NEWS ARTICLE

10 recommendations for regulating non-identifiable data

NEWS ARTICLE

Data privacy requests metrics: Lessons for your privacy program

NEWS ARTICLE

What are the driving forces of a company’s privacy strategy in a constantly changing landscape?

NEWS ARTICLE

Tech vendor looks to fill market gap by targeting SMEs

NEWS ARTICLE

BBB National Programs first APEC-approved US nonprofit Accountability Agent

NEWS ARTICLE

Effective management of cannabis consumer data risk

NEWS ARTICLE

Dynamic data security should be the policy default: Dynamic data obscurity revisited

NEWS ARTICLE

Privacy fatigue and how to combat it

NEWS ARTICLE

Why demonstrable accountability matters

NEWS ARTICLE

Why Batman shouldn’t write your privacy notice

NEWS ARTICLE

Anti-discriminatory algorithmic accountability: Transparency by design in AI-powered decision making

NEWS ARTICLE

From Microsoft’s CPO to Airbnb’s, his goals are the same

NEWS ARTICLE

Calif. on the verge of instituting new deidentification requirements, broader research exemptions

NEWS ARTICLE

3 benefits for businesses to adopt PDS

NEWS ARTICLE

Beyond a compliance mindset: How we communicate about privacy impacts our influence

NEWS ARTICLE

Building a culture of privacy: Privacy as a strategic initiative

NEWS ARTICLE

Study finds 93% of US citizens would switch to privacy-conscious organizations

NEWS ARTICLE

Setting data retention timelines

NEWS ARTICLE

CIPL report explores ‘the age of accountability’

NEWS ARTICLE

Building a culture of privacy: Be customer-centric

NEWS ARTICLE

How to make responsibly sourced data the rule, not the exception

NEWS ARTICLE

Deidentification 201: A lawyer’s guide to pseudonymization and anonymization

NEWS ARTICLE

Embedding data ethics into your ‘culture of privacy’

NEWS ARTICLE

How to operationalize privacy by design

NEWS ARTICLE

How to leverage your existing privacy program to manage brand reputation risks

NEWS ARTICLE

Building a culture of privacy: Legal compliance as a result, not a goal

NEWS ARTICLE

Program aims to help organizations design better privacy notices

NEWS ARTICLE

Looking beyond the fines: Accountability in light of FTC consent orders

NEWS ARTICLE

Building a long-lasting privacy program in an ever-changing regulatory landscape

NEWS ARTICLE

How to manage insider threats without violating privacy laws

NEWS ARTICLE

Tool helps map out relevant privacy laws for organizations

NEWS ARTICLE

Deidentification versus anonymization

NEWS ARTICLE

APEC announces new US Accountability Agent for CBPR certifications

NEWS ARTICLE

A look at the proposed Algorithmic Accountability Act of 2019

NEWS ARTICLE

How do organizations demonstrate a positive privacy impact?

NEWS ARTICLE

Does anonymization or de-identification require consent under the GDPR?

NEWS ARTICLE

Under Armour takes ‘honorable mention’ for building innovative privacy program

NEWS ARTICLE

How to draft a GDPR-compliant retention policy

NEWS ARTICLE

How to drive effective privacy operations with functional requirements

NEWS ARTICLE

The role of DPAs in incentivizing accountability

NEWS ARTICLE

UX solution allows companies to create streamlined privacy notices

NEWS ARTICLE

Encouraging a self-resolution approach under the accountability principle

NEWS ARTICLE

Starting-up privacy: How to facilitate privacy in smaller companies

NEWS ARTICLE

Looking at how our small business uses data: A GDPR perspective

NEWS ARTICLE

A lean approach to compliance: Minimum viable privacy program

NEWS ARTICLE

De-identification: Moving from the binary to a spectrum

NEWS ARTICLE

How startups can beat breaches on a budget

NEWS ARTICLE

A de-identification protocol for open data

NEWS ARTICLE

On Building Consumer-Friendly Privacy Notices for the IoT

NEWS ARTICLE

For Privacy Officers: Getting to Accountability with Limited Resources

NEWS ARTICLE

Need To Write a Solid Privacy Notice? A Few Tips

NEWS ARTICLE

Best practices in drafting plain-language and layered privacy policies

NEWS ARTICLE

Five considerations before publicizing privacy policy updates

NEWS ARTICLE

View More

Back to top

Research Articles and Reports

Privacy Program Operations

View all Research Articles and Reports

Benchmarking salary for digital responsibility

RESEARCH ARTICLE

US Data Privacy Litigation: Security breach litigation

RESOURCE ARTICLE

Privacy Governance Report 2024

REPORT

Organizational Digital Governance Report

REPORT

Responsible AI Management: Evolving Practice, Growing Value

REPORT

Amending Australia’s Privacy Act: Small businesses, bigger responsibilities

RESEARCH ARTICLE

IAPP-EY Professionalizing Organizational AI Governance Report

REPORT

Implications of the AI executive order for business

RESOURCE ARTICLE

Privacy governance: A problem solved or an ongoing challenge?

RESEARCH ARTICLE

Privacy Risk Study 2023

REPORT

A trans-Atlantic comparison of a real struggle: Anonymized, deidentified or aggregated?

RESEARCH ARTICLE

2023 IAPP Privacy Professionals Salary Survey

REPORT

Privacy and AI Governance Report

REPORT

The Alignment Problem with “Sale of Data”

WHITE PAPER

Maximize your minimization and other takeaways from the FTC’s Drizly case

RESEARCH ARTICLE

Privacy in M&A transactions: The playbook

REPORT

Privacy as a competitive differentiator: Building an effective and strategic healthcare privacy program

WHITE PAPER

Vaccine credential systems: Considerations for US employers

RESEARCH ARTICLE

Ransomware, data protection and compliance

RESEARCH ARTICLE

Privacy Leaders’ Views – The Impact of COVID-19 on Privacy Priorities, Practices and Programs

WHITE PAPER

Benefits, Attributes and Habits of Mature Privacy and Data Protection Programs

REPORT

The Skill Set Technologists Need to Implement a Privacy Risk Management Framework

WHITE PAPER

How to Build a Culture of Privacy

ARTICLE SERIES

Measuring Privacy Operations

REPORT

CCPA offers minimal advantages for deidentification, pseudonymization, and aggregation

RESEARCH ARTICLE

Applying the Positive-Sum Principle for Successful Privacy by Design Outcomes

WHITE PAPER

6 Ways Privacy Awareness Training Will Transform Your Staff

WHITE PAPER

Must-Have Privacy Training Features for Your Team

WHITE PAPER

Privacy and Data Security is for Everyone

WHITE PAPER

They Did What? Top Privacy Mistakes To Watch Out For (and How To Avoid Them)

WHITE PAPER

Outsourcing your DPO

ARTICLE SERIES

How Privacy Awareness Builds Trust

WHITE PAPER

Check or Mate? Strategic Privacy by Design

WHITE PAPER

Benchmarking your Privacy Incident Management Program

ARTICLE SERIES

The General Data Protection Regulation Matchup Series

ARTICLE SERIES

How to Shop Smart for Cyberinsurance

ARTICLE SERIES

Assessing Mobile App Data Privacy Risk

WHITE PAPER

Getting to the ROI of Privacy

WHITE PAPER

Building a Program that Provides Value

ARTICLE SERIES

For a Successful Privacy Program, Use these Three A’s

ARTICLE SERIES

How the C-Suite Should Talk About Cybersecurity

ARTICLE SERIES

Starting up privacy at a start-up

ARTICLE SERIES

How IT and Infosec Value Privacy

REPORT

Monitoring Your Privacy Program

ARTICLE SERIES

Third-Party Vendor Management Means Managing Your Own Risk

ARTICLE SERIES

Privacy, Security and Practical Considerations for Developing or Enhancing a BYOD Program

WHITE PAPER

Managing Your Data Breach

WHITE PAPER

Ten Steps to a Quality Privacy Program

ARTICLE SERIES

Privacy Policies: How To Communicate Effectively with Consumers

WHITE PAPER

View More

Back to top

Tools and Trackers

Privacy Program Operations

View all Tools and Trackers

Show me the (privacy) money – Budget and Staffing

INFOGRAPHIC

Checklist: Expedited Vendor Privacy and Security Assessment

TOOL

Consumer Privacy Notice Template

TOOL

Sample Data Processing Agreement

TOOL

Chief Privacy Officer: Sample Job Description

TOOL

View More

Back to top

Podcasts, Videos, Web Conferences

Privacy Program Operations

View all: Podcasts, Videos, Web Conferences

Privacy pros: Why collaborate with sales and marketing and how to do it well

WEB CONFERENCE

Unlock privacy ROI: Why making cross-functional allies is key

WEB CONFERENCE

30 countries, 200+ domains, one end goal: Managing privacy compliance at scale

WEB CONFERENCE

Data governance approaches to mitigating AI risk

WEB CONFERENCE

Automated decision-making: Navigating your compliance obligations

WEB CONFERENCE

Why privacy is your secret weapon against third-party risk

WEB CONFERENCE

Organizational Digital Responsibility in Practice

VIDEO

Implementing AI governance in a global compliance environment

VIDEO

Future-proofing consent: Effective compliance in a changing landscape

WEB CONFERENCE

View More

Back to top

Back to Top

Back to top