Daily Dashboard
The day’s top stories from around the world
Privacy Perspectives
Where the real conversations in privacy happen
The Privacy Advisor
Original reporting and feature articles on the latest privacy developments
Privacy Tracker
Alerts and legal analysis of legislative trends
Privacy Tech
Exploring the technology of privacy
Canada Dashboard Digest
A roundup of the top Canadian privacy news
Europe Data Protection Digest
A roundup of the top European data protection news
Asia-Pacific Dashboard Digest
A roundup of the top privacy news from the Asia-Pacific region
Latin America Dashboard Digest
A roundup of the top privacy news from Latin America
U.S. Privacy Digest
A roundup of US privacy news
Meet locally with privacy pros, dive deep into specialized topics or connect over common interests. Find your Community in KnowledgeNet Chapters, Sections and Affinity Groups.
Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.
Find a KnowledgeNet Chapter Near YouTalk privacy and network with local members at IAPP KnowledgeNet Chapter meetings, taking place worldwide.
IAPP Job BoardLooking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.
Two-day privacy training classes are held around the world. See the complete schedule now.
Upcoming Web ConferencesSee our list of upcoming web conferences. Just log on, listen in and learn!
Train Your TeamGet your team up to speed on privacy by bringing IAPP training to your organization.
Privacy Core® library delivers 30+ unitsTrain your entire global workforce with comprehensive, customizable online training available in a number of languages.
Online Privacy TrainingBuild your knowledge. The privacy know-how you need is just a click away.
Training Product Updates—Get Them Here!Training online? See the latest updates to our online training programs and our newest textbooks.
Let’s Get You GDPR Ready
May 25 was not the end—it’s just the beginning. We have all the resources you need to meet the challenges of the GDPR.
New! - The Privacy ImperativeView this three-video series featuring global privacy leaders as they discuss the importance of creating a culture of privacy
CIPP Certification
The global standard for the go-to person for privacy laws, regulations and frameworks
CIPM Certification
The first and only privacy certification for professionals who manage day-to-day operations
CIPT Certification
The industry benchmark for IT professionals worldwide to validate their knowledge of privacy requirements
FIP Designation
Recognizing the advanced knowledge and issue-spotting skills a privacy pro must attain in today’s complex world of data privacy.
Privacy Law Specialist
The first title to verify you meet stringent requirements for knowledge, skill, proficiency and ethics in privacy law, and one of the ABA’s newest accredited specialties.
CIPP/E + CIPM = GDPR Ready
The IAPP’S CIPP/E and CIPM are the ANSI/ISO-accredited, industry-recognized combination for GDPR readiness. Learn more today.
Compare member states' treatment of each GDPR derogation using this new tool from the IAPP.
Find a privacy vendor to meet your needs with our filterable list of global service providers.
Looking for the latest on data protection post-Brexit? IAPP members can get up-to-date information right here.
Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.
The IAPP's EU GDPR page collects the guidance, analysis, tools and resources you need to make sure you're meeting your obligations.
We've updated the Privacy Tech Vendor Report highlighting companies offering privacy technology solutions and insight on market trends from industry leaders.
IAPP Data Protection Intensive: France
Concentrated learning, sharing, and networking with all sessions delivered in parallel tracks—one in English, the other in French.
IAPP Data Protection Intensive: UK
Registration is open for the March event in London. Join us for a program focused on adaptation in a world of change.
CCPA Comprehensive 2019
An in-depth, day-long survey of the California Consumer Privacy Act of 2018 with top experts in California privacy law.
IAPP Global Privacy Summit
The world’s top privacy conference. Whether you work in the public or private sector, anywhere in the world, the Summit is your can't-miss event.
IAPP Canada Privacy Symposium
Registration for the Toronto event opens in February. Sign up for reminders to reserve your spot and preview the program.
IAPP Asia Privacy Forum
World-class discussion and education on the top privacy issues in Asia Pacific and around the globe.
Privacy. Security. Risk. (P.S.R.)
P.S.R. offers the best of the best in privacy and security, with innovative cross-education and stellar networking.
IAPP Europe Data Protection Congress
The hub of European privacy policy debate, thought leadership and strategic thinking with data protection professionals.
Mark Your CalendarFuture conference dates? We've got them! Get updates here.
Speak at an IAPP EventView our open calls and submission instructions.
(Jan 28, 2019) Blockhead makes his debut on the data theft circuit, but is it ... theft? Click on the image below if you would like to download a high-resolution pdf to print and hang in your office. (22.8 MB) ... Read More
(Jan 24, 2019) A report from the Cyber Security Research Group and the Policy Institute at King’s College London states the names of U.K. companies with poor cybersecurity measures should be named publicly, Computer Weekly reports. The groups argue companies will have more incentive to implement stronger cybersecurity should they be identified for their deficiencies. The report also states businesses, charities and other organizations would benefit from the adoption of the cybersecurity measures found within t... Read More
(Jan 22, 2019) The IAPP has worked through a number of the leading privacy guides and standards created for mobile app developers and the parties who host those apps and pulled out the salient points for all of the stakeholders in the mobile app community who are looking to do everything from collect data from children to provide adequate notice and choice previous to data collection. ... Read More
(Jan 15, 2019) The effectiveness of an organization's incident response process undergirds a successful privacy program. Despite its importance, implementing an effective program is challenging, even to the most experienced privacy professional. Difficulties in proper incident detection and escalation, the complexities of breach notification regulations, budget constraints, and process inefficiencies are the everyday realities of privacy pros across all industries. In this upcoming IAPP web conference Jan. 24,... Read More
(Jan 9, 2019) Digital forensics and eDiscovery service provider BIA has released a new service designed to help identify personal and sensitive data compromised in a data breach, according to a news release. BIA President and CEO Brian Schrader said, "There’s a significant demand for data breach discovery, and it is a natural outgrowth of the services BIA offers and has honed over our 15 plus years in eDiscovery." The new release states the company combines "cybersecurity methodologies and electronic discover... Read More
(Jan 8, 2019) Health care compliance analytics company Protenus has announced it has formed a strategic partnership with incident response platform RADAR. According to a news release, the partnership aims to help health care organizations detect and assess risks associated with privacy and security events. "Protenus and RADAR share a commitment to applying advanced technology to solve complex problems related to patient data privacy and security," RADAR CEO Mahmood Sher-Jan said. Protenus Vice President of Bu... Read More
(Dec 10, 2018) The U.S. House Oversight Committee released a report Monday on last year's data breach of Equifax, saying the incident was "entirely preventable" and that the company mishandled its response, according to Politico. "Equifax failed to fully appreciate and mitigate its cybersecurity risks," the Congressional report states. Two factors led to the breach: The company's structure allowed gaps between IT policy development and operations, and the company grew too fast, creating a series of legacy syst... Read More
(Dec 6, 2018) The U.S. Securities and Exchange Commission requires most publicly traded companies to annually disclose potential risk factors, including exposure to cybersecurity threats and violations of consumer privacy laws. The IAPP’s third annual study of these disclosures (part of Form 10-K) of 150 publicly traded companies shows that — like last year — effectively 100 percent identified concerns about cyberattacks in their 2017 10-K reports. New this year is a significantly higher concern about risks o... Read More
(Nov 26, 2018) In this Privacy Perspectives post, IAPP Senior Content Manager Emily Leach, CIPP/E, CIPP/US, introduces a new tool in the Resource Center, called the DPO Report Template. Last month, a question was posed on the Privacy List: "Does anyone have a template of an annual [or quarterly or any similar] DPO report to management that they would be kind enough to share?" The question generated dozens of responses that went something like, "Yeah, I'd like to see that too!" and some others offering informat... Read More
(Nov 20, 2018) The U.K. Information Commissioner's Office has published new guidance on encryption. The guidance outlines current forms of encryption in use and scenarios when encryption can help protect an entity's sensitive data. The resource covers encryption in the context of the EU General Data Protection Regulation's integrity and confidentiality principle, as well as under Article 32 on security processing. "This guidance will help you to understand the importance of encryption as an appropriate technic... Read More