ProfessionalVendor-neutralIAPP· issued from US

CIPP/E

Certified Information Privacy Professional / Europe

GDPR and European privacy law expertise.

Official page at IAPP ↔ Compare with another cert

Exam fee

$550

Ongoing

$250/yr AMF · 10 CPE/yr

Study time

50–100 hrs

Delivery

Online proctored

Validity

2 yrs (renewal cycle)

› Quality score

27.0 / 40

Four-axis SecProve rubric, each 0–10. SecProve editorial assessment — each axis carries a written justification so you can push back on any single call without dismissing the whole score.

Blueprint rigor

How well-defined and rigorous the exam blueprint is.

Tightly scoped to GDPR + EU national-law nuance. Body of knowledge maps article-by-article.

9.0/10

Practical evidence

Hands-on labs / written reports vs pure MCQ.

Pure MCQ. No applied case work.

0.0/10

Currency & upkeep

How aggressively content is kept current with the field.

Refreshed continuously to reflect EU regulator decisions and case law.

9.0/10

Market recognition

How often this signal actually moves a hiring decision.

The de-facto European privacy credential; effectively required for many DPO roles. [Holders: 30k, 2024-12]

9.0/10

› Market signals

public, citable inputs to the recognition score

Holders worldwide

30,000

as of 2024-12 · source

› Built for these roles

Data Protection Officer (DPO)Privacy CounselGDPR Compliance LeadPrivacy Program Manager (EU-focused)

› Exam format

90 multiple-choice questions over 2.5 hours, English. Online proctored via IAPP/Pearson. Heavy reading load — GDPR articles plus EU national-law nuance.

Passing score

300/500 (scaled, ~70%)

Retake policy

Fee: $375 per attempt

Wait: 30d between attempts

30-day wait between attempts. IAPP discounts for members.

› Recertification

20 CPE credits over two years (avg 10/yr) plus the $250/yr IAPP membership fee that bundles certification renewal.

› 3-year cost of ownership

Exam (1×)

$550

AMF (3×)

$750@$250/yr

Total

$1300

Excludes study materials, training, retake risk, and lost-wage opportunity. Use as a floor estimate.

Recognition

GlobalEUUKDACH

Exam languages

endefr

› Core domains covered

The 1 domain this cert is centrally about. Passing the exam demonstrates working knowledge of each.

A12Data Security, Privacy & Protection

Data classification, encryption-at-rest/in-transit, DLP, tokenization, privacy-by-design, plus the regulatory stack (GDPR, CCPA, HIPAA) that sets the bar.

› Also touched

Present in the blueprint but not the primary focus — you’ll be introduced but shouldn’t expect depth.

A1Governance, Risk & Compliance

Risk frameworks (NIST RMF, ISO 31000, FAIR), policy development, audit, regulatory compliance, third-party risk.

C7AI Governance & Risk

EU AI Act compliance, NIST AI RMF, AI risk assessment, model cards, algorithmic auditing, AI incident response.

› Prerequisites

Experience

Legal, compliance, or privacy-program background preferred. Heavy reading required — GDPR is a text-dense exam.

Knowledge assumed

GDPR articles and core principles
EU data-protection enforcement landscape
Cross-border data transfer mechanisms

› Progression

requiredrecommended

Where this cert fits in the typical learning path. Required edges are vendor-gated; recommended edges reflect de facto industry progression.

Required prereqs (0)

No vendor-gated prereqs.

Recommended priors (0)

No de facto priors typically expected.

CIPP/E

IAPP

Required by (0)

No certs require this one.

Recommended next (4)

CIPPIAPP CDPSEISACA CIPP/CIAPP AIGPIAPP

› Study materials

Curated starting points. Not exhaustive — vet each against your learning style and the current exam version.

Official guides

European Data Protection: Law and Practice (3rd Ed.) — IAPP

Training providers

IAPP Official CIPP/E Training

Practice tests

IAPP Practice Exam

Free / community

IAPP Resource Center (free articles + GDPR guidance)

› Version & lifecycle

Current version

2024 body of knowledge

Released

2024-01

IAPP updates the body of knowledge annually to track EU regulatory changes (DSA, AI Act).

› Salary signal

Privacy professional / DPO, US/EU, 3–7 years.

$95K–$145K

median $117K

IAPP Privacy Salary Survey + Robert Half Salary Guide · 2024 · US base only · p25–p75 range

› How it compares

CIPP/US

Regional twin — CIPP/E for EU/GDPR work, CIPP/US for US state-law work.

↔ Compare side-by-side

CIPM

CIPM is privacy-program management; CIPP/E is the regulatory-knowledge cert. Often paired.

↔ Compare side-by-side

› Careers that commonly pursue this cert

Privacy Engineer / DPO

Build privacy into systems by design. Navigate GDPR, CCPA, and emerging AI privacy regulations.

See this cert’s domains highlighted on the interactive map, or compare it against the rest of the catalog.

Highlight on the domain map Browse all certifications