A comprehensive resource for practicing and aspiring privacy and compliance professionals The newly revised second edition of the IAPP® CIPP/US® Certified Information Privacy Professional Study Guide is an intuitive roadmap to succeeding on one of the most sought-after privacy certifications on the global market. Emphasizing hands-on learning and real-world applications, the Study Guide covers every competency tested on the challenging CIPP exam. As with every Sybex study guide, this book includes online practice tests, complimentary access to electronic flashcards and an online glossary of…mehr
A comprehensive resource for practicing and aspiring privacy and compliance professionals The newly revised second edition of the IAPP® CIPP/US® Certified Information Privacy Professional Study Guide is an intuitive roadmap to succeeding on one of the most sought-after privacy certifications on the global market. Emphasizing hands-on learning and real-world applications, the Study Guide covers every competency tested on the challenging CIPP exam. As with every Sybex study guide, this book includes online practice tests, complimentary access to electronic flashcards and an online glossary of common terms. It's the perfect guide for improving your on-the-job and exam performance. Coverage of 100% of all exam objectives in this Study Guide means you'll be ready for: * Introduction to the U.S. Privacy Environment * Limits on Private-sector Collection and Use of Data * Government and Court Access to Private-sector Information * Workplace Privacy * State Privacy Laws ABOUT THE CIPP PROGRAM The Certified Information Privacy Professional (CIPP) certification from the International Association of Privacy Professionals (IAPP) is the most versatile and best-known global certification for privacy and data protection. Interactive learning environment Take your exam prep to the next level with Sybex's superior interactive online study tools. To access our learning environment, simply visit www.wiley.com/go/sybextestprep, follow the instructions to register your book, and instantly gain one year of FREE access after activation to: ¿ Interactive test bank with 2 practice exams to help you identify areas where further review is needed. Get more than 90% of the answers correct, and you're ready to take the certification exam. ¿ More than 100 electronic flashcards to reinforce learning and last-minute prep before the exam. ¿ Comprehensive glossary in PDF format gives you instant access to the key terms so you are fully prepared. ¿ Audio review of Exam Essentials for each chapter narrated by Mike Chapple.Hinweis: Dieser Artikel kann nur an eine deutsche Lieferadresse ausgeliefert werden.
ABOUT THE AUTHORS Mike Chapple, PhD, CIPP/US, is Teaching Professor of Information Technology, Analytics, and Operations at Notre Dame's Mendoza College of Business. He is the bestselling author of over 25 technical books. He is also the Academic Director of the University's Master of Science in Business Analytics program. Joe Shelley, CIPP/US, is the Vice President for Libraries and Information Technology at Hamilton College in New York. He oversees the information security and privacy programs, IT risk management, business intelligence and analytics, and data governance.
Inhaltsangabe
Contents Introduction xix Assessment Test xxix Chapter 1 Privacy in the Modern Era 1 Introduction to Privacy 2 What Is Privacy? 3 What Is Personal Information? 4 What Isn't Personal Information? 5 Why Should We Care About Privacy? 7 Generally Accepted Privacy Principles 8 Management 9 Notice 9 Choice and Consent 10 Collection 10 Use, Retention, and Disposal 11 Access 11 Disclosure to Third Parties 12 Security for Privacy 12 Quality 14 Monitoring and Enforcement 14 Developing a Privacy Program 15 Crafting Strategy, Goals, and Objectives 15 Appointing a Privacy Official 16 Privacy Roles 17 Building Inventories 18 Conducting a Privacy Assessment 18 Implementing Privacy Controls 20 Ongoing Operation and Monitoring 20 Online Privacy 20 Privacy Notices 21 Privacy and Cybersecurity 21 Cybersecurity Goals 22 Relationship Between Privacy and Cybersecurity 23 Privacy by Design 24 Summary 25 Exam Essentials 25 Review Questions 27 Chapter 2 Legal Environment 31 Branches of Government 32 Legislative Branch 32 Executive Branch 33 Judicial Branch 34 Understanding Laws 36 Sources of Law 36 Analyzing a Law 41 Legal Concepts 43 Legal Liability 44 Torts and Negligence 45 Summary 46 Exam Essentials 46 Review Questions 48 Chapter 3 Regulatory Enforcement 53 Federal Regulatory Authorities 54 Federal Trade Commission 54 Federal Communications Commission 60 Department of Commerce 61 Department of Health and Human Services 61 Banking Regulators 62 Department of Education 63 State Regulatory Authorities 63 Self-Regulatory Programs 64 Payment Card Industry 65 Advertising 65 Trust Marks 66 Safe Harbors 66 Summary 67 Exam Essentials 68 Review Questions 69 Chapter 4 Information Management 73 Data Governance 74 Building a Data Inventory 74 Data Classification 75 Data Flow Mapping 77 Data Lifecycle Management 78 Workforce Training 79 Cybersecurity Threats 80 Threat Actors 81 Incident Response 86 Phases of Incident Response 86 Preparation 87 Detection and Analysis 88 Containment, Eradication, and Recovery 88 Post-incident Activity 88 Building an Incident Response Plan 90 Data Breach Notification 92 Vendor Management 93 Summary 94 Exam Essentials 95 Review Questions 97 Chapter 5 Private Sector Data Collection 101 FTC Privacy Protection 103 General FTC Privacy Protection 103 The Children's Online Privacy Protection Act (COPPA) 104 Future of Federal Enforcement 107 Medical Privacy 110 The Health Insurance Portability and Accountability Act (HIPAA) 111 The Health Information Technology for Economic and Clinical Health Act 119 The 21st Century Cures Act 120 Confidentiality of Substance Use Disorder Patient Records Rule 121 Financial Privacy 122 Privacy in Credit Reporting 122 Gramm-Leach-Bliley Act (GLBA) 125 Red Flags Rule 129 Consumer Financial Protection Bureau 130 Educational Privacy 131 Family Educational Rights and Privacy Act (FERPA) 131 Telecommunications and Marketing Privacy 132 Telephone Consumer Protection Act (TCPA) and Telemarketing Sales Rule (TSR) 133 The Junk Fax Prevention Act (JFPA) 136 Controlling the Assault of Non-solicited Pornography and Marketing (CAN-SPAM) Act 136 Telecommunications Act and Customer Proprietary Network Information 138 Cable Communications Policy Act 139 Video Privacy Protection Act (VPPA) of 1988 140 Driver's Privacy Protection Act (DPPA) 141 Digital Advertising and Data Ethics 142 Web Scraping 143 Summary 143 Exam Essentials 144 Review Questions 146 Chapter 6 Government and Court Access to Private Sector Information 151 Law Enforcement and Privacy 152 Access to Financial Data 153 Access to Communications 157 National Security and Privacy 162 Foreign Intelligence Surveillance Act (FISA) of 1978 162 FISA Amendments Act Section 702 164 USA-PATRIOT Act 165 The USA Freedom Act of 2015 167 The Cybersecurity Information Sharing Act of 2015 168 Civil Litigation and Privacy 169 Compelled Disclosure of Media Information 170 Electronic Discovery 171 Summary 173 Exam Essentials 173 Review Questions 175 Chapter 7 Workplace Privacy 179 Introduction to Workplace Privacy 180 Workplace Privacy Concepts 180 U.S. Agencies Regulating Workplace Privacy Issues 181 U.S. Antidiscrimination Laws 182 Privacy Before, During, and After Employment 185 Automated Employment Decision Tools 186 Employee Background Screening 186 Employee Monitoring 190 Investigation of Employee Misconduct 194 Termination of the Employment Relationship 196 Summary 197 Exam Essentials 198 Review Questions 200 Chapter 8 State Privacy Laws 205 Federal vs. State Authority 206 Elements of State Privacy Laws 207 Applicability 207 Data Subject Rights 208 Privacy Notice Requirements 209 Data Protection 209 Enforcement 211 Data Breach Notification 212 Elements of State Data Breach Notification Laws 212 Key Differences Among States 214 Significant Developments 215 Other Recent Updates to State Breach Notification Laws 218 Comprehensive State Privacy Laws 220 California Consumer Privacy Act (2018) and California Privacy Rights Act (2020) 220 Virginia Consumer Data Protection Act 223 Colorado Privacy Act 226 Connecticut Data Privacy Act 229 Utah 231 Florida 232 Oregon 234 Texas 237 Montana 239 Subject-Specific State Privacy Laws 241 Health and Genetic Information 241 Online Privacy 243 Biometric Information Privacy Regulations 247 AI and Automated Decision-Making 249 Data Brokers 250 Financial Privacy 251 California Financial Information Privacy Act 252 Recent Developments 253 Marketing Laws 254 Summary 255 Exam Essentials 256 Review Questions 258 Chapter 9 International Privacy Regulation 263 International Data Transfers 264 European Union General Data Protection Regulation 265 Adequacy Decisions 268 Binding Corporate Rules 272 Standard Contractual Clauses 273 Other Approved Transfer Mechanisms 273 APEC Privacy Framework 274 Cross-Border Enforcement Issues 276 Global Privacy Enforcement Network 276 Resolving Multinational Compliance Conflicts 276 Summary 277 Exam Essentials 277 Review Questions 279 Appendix Answers to Review Questions 283 Chapter 1: Privacy in the Modern Era 284 Chapter 2: Legal Environment 285 Chapter 3: Regulatory Enforcement 287 Chapter 4: Information Management 289 Chapter 5: Private Sector Data Collection 291 Chapter 6: Government and Court Access to Private Sector Information 293 Chapter 7: Workplace Privacy 294 Chapter 8: State Privacy Laws 296 Chapter 9: International Privacy Regulation 298 Index 301
Contents Introduction xix Assessment Test xxix Chapter 1 Privacy in the Modern Era 1 Introduction to Privacy 2 What Is Privacy? 3 What Is Personal Information? 4 What Isn't Personal Information? 5 Why Should We Care About Privacy? 7 Generally Accepted Privacy Principles 8 Management 9 Notice 9 Choice and Consent 10 Collection 10 Use, Retention, and Disposal 11 Access 11 Disclosure to Third Parties 12 Security for Privacy 12 Quality 14 Monitoring and Enforcement 14 Developing a Privacy Program 15 Crafting Strategy, Goals, and Objectives 15 Appointing a Privacy Official 16 Privacy Roles 17 Building Inventories 18 Conducting a Privacy Assessment 18 Implementing Privacy Controls 20 Ongoing Operation and Monitoring 20 Online Privacy 20 Privacy Notices 21 Privacy and Cybersecurity 21 Cybersecurity Goals 22 Relationship Between Privacy and Cybersecurity 23 Privacy by Design 24 Summary 25 Exam Essentials 25 Review Questions 27 Chapter 2 Legal Environment 31 Branches of Government 32 Legislative Branch 32 Executive Branch 33 Judicial Branch 34 Understanding Laws 36 Sources of Law 36 Analyzing a Law 41 Legal Concepts 43 Legal Liability 44 Torts and Negligence 45 Summary 46 Exam Essentials 46 Review Questions 48 Chapter 3 Regulatory Enforcement 53 Federal Regulatory Authorities 54 Federal Trade Commission 54 Federal Communications Commission 60 Department of Commerce 61 Department of Health and Human Services 61 Banking Regulators 62 Department of Education 63 State Regulatory Authorities 63 Self-Regulatory Programs 64 Payment Card Industry 65 Advertising 65 Trust Marks 66 Safe Harbors 66 Summary 67 Exam Essentials 68 Review Questions 69 Chapter 4 Information Management 73 Data Governance 74 Building a Data Inventory 74 Data Classification 75 Data Flow Mapping 77 Data Lifecycle Management 78 Workforce Training 79 Cybersecurity Threats 80 Threat Actors 81 Incident Response 86 Phases of Incident Response 86 Preparation 87 Detection and Analysis 88 Containment, Eradication, and Recovery 88 Post-incident Activity 88 Building an Incident Response Plan 90 Data Breach Notification 92 Vendor Management 93 Summary 94 Exam Essentials 95 Review Questions 97 Chapter 5 Private Sector Data Collection 101 FTC Privacy Protection 103 General FTC Privacy Protection 103 The Children's Online Privacy Protection Act (COPPA) 104 Future of Federal Enforcement 107 Medical Privacy 110 The Health Insurance Portability and Accountability Act (HIPAA) 111 The Health Information Technology for Economic and Clinical Health Act 119 The 21st Century Cures Act 120 Confidentiality of Substance Use Disorder Patient Records Rule 121 Financial Privacy 122 Privacy in Credit Reporting 122 Gramm-Leach-Bliley Act (GLBA) 125 Red Flags Rule 129 Consumer Financial Protection Bureau 130 Educational Privacy 131 Family Educational Rights and Privacy Act (FERPA) 131 Telecommunications and Marketing Privacy 132 Telephone Consumer Protection Act (TCPA) and Telemarketing Sales Rule (TSR) 133 The Junk Fax Prevention Act (JFPA) 136 Controlling the Assault of Non-solicited Pornography and Marketing (CAN-SPAM) Act 136 Telecommunications Act and Customer Proprietary Network Information 138 Cable Communications Policy Act 139 Video Privacy Protection Act (VPPA) of 1988 140 Driver's Privacy Protection Act (DPPA) 141 Digital Advertising and Data Ethics 142 Web Scraping 143 Summary 143 Exam Essentials 144 Review Questions 146 Chapter 6 Government and Court Access to Private Sector Information 151 Law Enforcement and Privacy 152 Access to Financial Data 153 Access to Communications 157 National Security and Privacy 162 Foreign Intelligence Surveillance Act (FISA) of 1978 162 FISA Amendments Act Section 702 164 USA-PATRIOT Act 165 The USA Freedom Act of 2015 167 The Cybersecurity Information Sharing Act of 2015 168 Civil Litigation and Privacy 169 Compelled Disclosure of Media Information 170 Electronic Discovery 171 Summary 173 Exam Essentials 173 Review Questions 175 Chapter 7 Workplace Privacy 179 Introduction to Workplace Privacy 180 Workplace Privacy Concepts 180 U.S. Agencies Regulating Workplace Privacy Issues 181 U.S. Antidiscrimination Laws 182 Privacy Before, During, and After Employment 185 Automated Employment Decision Tools 186 Employee Background Screening 186 Employee Monitoring 190 Investigation of Employee Misconduct 194 Termination of the Employment Relationship 196 Summary 197 Exam Essentials 198 Review Questions 200 Chapter 8 State Privacy Laws 205 Federal vs. State Authority 206 Elements of State Privacy Laws 207 Applicability 207 Data Subject Rights 208 Privacy Notice Requirements 209 Data Protection 209 Enforcement 211 Data Breach Notification 212 Elements of State Data Breach Notification Laws 212 Key Differences Among States 214 Significant Developments 215 Other Recent Updates to State Breach Notification Laws 218 Comprehensive State Privacy Laws 220 California Consumer Privacy Act (2018) and California Privacy Rights Act (2020) 220 Virginia Consumer Data Protection Act 223 Colorado Privacy Act 226 Connecticut Data Privacy Act 229 Utah 231 Florida 232 Oregon 234 Texas 237 Montana 239 Subject-Specific State Privacy Laws 241 Health and Genetic Information 241 Online Privacy 243 Biometric Information Privacy Regulations 247 AI and Automated Decision-Making 249 Data Brokers 250 Financial Privacy 251 California Financial Information Privacy Act 252 Recent Developments 253 Marketing Laws 254 Summary 255 Exam Essentials 256 Review Questions 258 Chapter 9 International Privacy Regulation 263 International Data Transfers 264 European Union General Data Protection Regulation 265 Adequacy Decisions 268 Binding Corporate Rules 272 Standard Contractual Clauses 273 Other Approved Transfer Mechanisms 273 APEC Privacy Framework 274 Cross-Border Enforcement Issues 276 Global Privacy Enforcement Network 276 Resolving Multinational Compliance Conflicts 276 Summary 277 Exam Essentials 277 Review Questions 279 Appendix Answers to Review Questions 283 Chapter 1: Privacy in the Modern Era 284 Chapter 2: Legal Environment 285 Chapter 3: Regulatory Enforcement 287 Chapter 4: Information Management 289 Chapter 5: Private Sector Data Collection 291 Chapter 6: Government and Court Access to Private Sector Information 293 Chapter 7: Workplace Privacy 294 Chapter 8: State Privacy Laws 296 Chapter 9: International Privacy Regulation 298 Index 301
Es gelten unsere Allgemeinen Geschäftsbedingungen: www.buecher.de/agb
Impressum
www.buecher.de ist ein Internetauftritt der buecher.de internetstores GmbH
Geschäftsführung: Monica Sawhney | Roland Kölbl | Günter Hilger
Sitz der Gesellschaft: Batheyer Straße 115 - 117, 58099 Hagen
Postanschrift: Bürgermeister-Wegele-Str. 12, 86167 Augsburg
Amtsgericht Hagen HRB 13257
Steuernummer: 321/5800/1497
![VCP VMware Certified Professional vSphere 4 Study Guide (Exam VCP410) [With CDROM]](https://bilder.buecher.de/produkte/28/28927/28927523m.jpg "VCP VMware Certified Professional vSphere 4 Study Guide (Exam VCP410) [With CDROM]")
