Important topics CIPP/E Exam, must read! 2025
The General Data Protection Regulation (GDPR) is a cornerstone of European data protection law. A thorough understanding of this regulation is important for anyone preparing for the Certified Information Privacy Professional/Europe (CIPP/E) exam.
Key Resources for Studying GDPR
The International Association of Privacy Professionals (IAPP) textbook and related courses offer in-depth coverage of the GDPR. However, if time permits, it’s highly recommended to engage with the actual text of the regulation. Regularly referring to or even reading the entire GDPR can provide valuable insights.
To suit your learning style, there are multiple ways to access and study the GDPR:
- PDF Download: The full text of the GDPR is available in PDF format, allowing for easy offline access and reference.
- Apps and Websites: Numerous apps and online platforms provide interactive tools for studying GDPR provisions.
- Visual Aids and Videos: Charts, infographics, and explanatory videos can simplify complex GDPR concepts and make learning more engaging.
The Role of EDPB Publications
The European Data Protection Board (EDPB) plays an important role in the implementation and harmonization of GDPR across the European Union. Established in 2018 as the successor to the Article 29 Working Party (WP29), the EDPB’s primary mission is to foster consistency in interpreting and enforcing GDPR regulations.
The EDPB achieves this by issuing:
- Opinions
- Recommendations
- Best practices
- Guidelines
These resources are invaluable for understanding the practical application of GDPR in diverse scenarios.
EDPB Guidelines and the CIPP/E Exam
In October 2022, the CIPP/E exam syllabus was expanded to include ten EDPB guidelines. All the EDPB documentation can be accessed on the official EDPB website. To provide convenient access, we have also included direct links to each guideline below:
- Guidelines 07/2020 on the concepts of controller and processor in the GDPR
- Guidelines 3/2018 on the territorial scope of the GDPR
- Guidelines 5/2019 on the criteria of the Right to be Forgotten in the search engines cases under the GDPR”
- Guideline 10/2020 on restrictions under Article 23 GDPR
- Guidelines 05/2021 on the Interplay between the application of Article 3 and the provisions on international transfers as per Chapter V of the GDPR
- Guidelines 04/2021 on codes of conduct as tools for transfers
- Guidelines 2/2018 on derogations of Article 49 under Regulation 2016/679
- Recommendations 01/2020 on measures that supplement transfer tools to ensure compliance with the EU level of protection of personal data
- Guidelines 3/2019 on processing of personal data through video devices
- Guidelines 8/2020 on the targeting of social media users
- Guidelines 01/2021 on Examples regarding Personal Data Breach Notification
- Guidelines 01/2022 on data subject rights
- Guidelines 9/2022 on personal data breach notification under GDPR
- Guidelines 03/2022 on deceptive design patterns in social media platform interfaces: how to recognize and avoid them
- Guidelines 05/2022 on the use of facial recognition technology in the area of law enforcement
Mastering GDPR is critical for achieving the CIPP/E certification. By leveraging a mix of the IAPP’s resources, direct engagement with the GDPR text, and EDPB guidelines, learners can gain a comprehensive understanding of this regulation. Whether you prefer textual study, interactive tools, or visual aids, there’s a study method suited to your needs. Dive into the resources and set yourself up for success in your CIPP/E journey. Good luck!
