PrivacyOps Certification

Course content
Create Account

Log in / Create account to save progress and earn badges

Module 0
Introduction to the PrivacyOps Certification
5 Topics
Overview: Introduction to the PrivacyOps Certification
Learning Objectives
Why Data Privacy is Important Today?
The Concept of PrivacyOps and its Benefits
Course Content and Brief Introductions
Module 1
The Modern Privacy Landscape
9 Topics | 1 Quiz
Overview: The Modern Privacy Landscape
What is Data Privacy?
Personal Data and Sensitive Personal Data
The 7 Principles of Data Protection
Data Privacy Approaches: Privacy-by-design & Privacy-by-default
Modern Privacy Laws Explained
Consequences of Data Protection and Non-compliance Failures
An Organization’s Obligations to Protect Personal Data
Feedback
The Modern Privacy Landscape Quiz
Module 2
Privacy Law compliance and PrivacyOps
12 Topics | 1 Quiz
Overview: Privacy Law Compliance and PrivacyOps
The Rapidly Changing Privacy Landscape
Issues with the Legacy Privacy Management Approach
What is PrivacyOps?
The Benefits of the PrivacyOps Approach
The Building Blocks of a PrivacyOps Platform
The Maturity Levels of PrivacyOps
Maturity Level 2 of PrivacyOps Explained
How to Adopt the PrivacyOps Approach?
The Critical Elements of a PrivacyOps Platform
Centralized Privacy Center – Try it now, it’s Free
Feedback
Privacy Law compliance and PrivacyOps Quiz
Module 3
Sensitive Data Intelligence
7 Topics | 1 Quiz
Overview: Sensitive Data Intelligence
What is Sensitive Data Intelligence?
Why Do Organizations Need Sensitive data Intelligence?
The Sensitive Data Intelligence Adoption Process
Sensitive Data Intelligence as a Foundation for PrivacyOps Compliance
Features of an Ideal Sensitive Data Intelligence Solution
Feedback
Sensitive Data Intelligence Quiz
Module 4
Data Mapping Automation
9 Topics | 1 Quiz
Overview: Data Mapping Automation
What is Data Mapping?
Why Do Organizations Need a Modern Data Mapping Solution?
What Questions Does Data Mapping Help Answer?
The PrivacyOps Approach to Data Mapping
Challenges and Solutions of Data Mapping Explained
The Data Mapping Process Explained
Data Mapping Maturity Levels
Feedback
Data Mapping Quiz
Module 5
Data Subject Rights Fulfillment Automation
10 Topics | 1 Quiz
Overview: DSR Fulfillment Automation
Data Subjects Rights (DSRs) Types
Manual DSR Fulfillment Problems
Automated DSR Fulfillment
Features of a PrivacyOps DSR Fulfillment Solution
Challenges & Solutions of DSR Fulfillment
The DSR Fulfillment Process
The DSR Fulfillment Maturity Levels
Centralized Privacy Center – Try it now, it’s Free
Feedback
Data Subject Rights Fulfillment Automation Quiz
Module 6
Assessment Automation
8 Topics | 1 Quiz
Overview: Assessment Automation
What is an Assessment?
Why do Organizations Need Assessments?
Types of Assessments
Manual Assessment Methods and their Challenges
How Can PrivacyOps Platforms Ease the Assessment Process?
How Are Assessments Conducted in a PrivacyOps Platform?
Feedback
Assessment Automation Quiz
Module 7
Consent Lifecycle Management
11 Topics | 1 Quiz
Consent Lifecycle Management
What is Consent?
What are the elements of valid consent
Opt-in and Opt-out consent regimes
Which countries are Opt-in or Opt-out consent regimes?
What is Universal Consent Management?
How Do PrivacyOps platforms automate Universal Consent Management?
What is Cookie Consent Management?
How Do PrivacyOps platforms automate Cookie Consent Management?
Centralized Privacy Center – Try it now, it’s Free
Feedback
Consent Lifecycle Management Quiz
Module 8
Privacy Notice Creation & Management
8 Topics | 1 Quiz
Overview: Privacy Notice Creation & Management
What are Privacy Notices & why are they important?
The Relationship between Privacy Notices and Risk
The Challenges of Manually Creating & Managing Privacy Notices
PrivacyOps Approach to Privacy Notice Creation & Management
The Two Maturity Levels of Privacy Notice Creation & Management
Centralized Privacy Center – Try it now, it’s Free
Feedback
Privacy Notice Creation/Management Quiz
Module 9
Incident and Data Breach Management
7 Topics | 1 Quiz
Overview: Incident and Breach Management
How to Prevent a Personal Data Breach?
The Steps of a Breach Response Mechanism
Breach Notification Requirements in Major Privacy Laws
The Challenges of Effective Breach Management
Breach Management Automation in a PrivacyOps Platform
Feedback
Incident and Data Breach Management Quiz
Module 10
Vendor Assessment Automation
9 Topics | 1 Quiz
Overview
What is a Vendor Assessment?
Why Should Organizations Assess Vendors?
Liabilities of Data Controllers and Vendors’ Non-Compliance Risks
Issues of Manually Assessing Vendor Privacy
The PrivacyOps Solution to Vendor Assessments
How Vendor Assessments Work in a PrivacyOps Platform
How Vendor Privacy Risk Monitoring and Ratings Work
Feedback
Vendor Assessments Quiz
Module 11
Conclusion
6 Topics
Overview: Conclusion
The Need for Effective Data Privacy Management Today
Why Existing Data Privacy Management Practices are Obsolete
The PrivacyOps Approach to Data Privacy Management
How Securiti Helps Simplify Data Privacy Management
Centralized Privacy Center – Try it now, it’s Free
Module 12
Certification Exam
1 Quiz
Certification Exam
Module 13
Course Survey
PrivacyOps Certification
View course details →

What is Cookie Consent Management?

Mark Complete Enroll now to save progress and earn badges. Click to continue.
PrivacyOps Certification Consent Lifecycle Management What is Cookie Consent Management?

Cookie Consent Management enables organizations to effectively capture consent before storing cookies and other similar tracking technologies such as beacons, pixels, local storage, and more on data subject’s devices.

Why is consent needed for the use of cookies?
Website publishers use cookies and similar tracking technologies for cross-site tracking, cross-context behavioral advertising, contextual advertising, and other types of advertising.
Cookies collect data to identify website users and build their profiles.
This data is then sold on to several third parties, including ad networks, social media companies, and analytics providers.
Most global privacy laws now require the data subject’s consent before installing cookies and similar tracking technologies on their devices.
Cookie Consent under GDPR and e-Privacy Directive

The GDPR and e-Privacy Directive require organizations not to load any non-essential cookies on web pages unless they have a cookie consent banner on their website and data subjects have consented to the use of those cookies.

A GDPR and e-Privacy Directive compliant cookie consent banner must:

Have clear and comprehensive information about cookies:

The cookie consent banner must contain plain and understandable information about the cookies that an organization intends to use. The information must include at the least
  • The information on general purposes of cookies,
  • The data subject’s ability to withdraw and change consent along with the method of doing so,
  • The data controller’s name and identity,
  • The data processors’ name and identities,
  • A complete list of recipients or categories of recipients who will obtain personal data through the processing of cookies, and
  • All relevant Information on individual cookie properties

Data subject’s ability to withdraw and change the consent:

The cookie consent banner must give equal prominences to accept and reject options. The data subject must be allowed to withdraw consent or change consent at any time, without any detriment in a user-friendly and easy mechanism.

Selection and deselection of individual cookies categories:

The cookie consent banner must allow the selection and deselection of respective cookie categories based on their purposes. This requires organizations to have separate opt-in and opt-outs for different categories of cookies based on their purposes.

No pre-selected checkboxes or cookie walls:

The cookie consent banner must not have pre-selected preferences by default for non-essential cookies. Similarly, an organization must not access a service or functionality of a website conditional on the data subject’s consent to the collection and processing of non-essential cookies.
Cookie Consent under CCPA

The CCPA requires organizations to not load any non-essential cookies before displaying relevant information to users about cookies.

A CCPA compliant cookie consent banner must include the following:

Information about the use of cookies and their purposes

Under the CCPA, organizations must inform data subjects at or before collecting the categories of cookies collected and the purposes for which the organization will use cookies.

Notice of the right to opt-out of the sale of personal data

Under the CCPA, organizations must allow data subjects to opt-out of the sale of their personal data via cookies by displaying a clear message and prominent link titled “Do Not Sell My Personal Information,” enabling data subjects to opt-out of the sale of their personal data.

A link to the organization’s privacy policy

Under the CCPA, organizations must display a link to the organization’s privacy policy that should be posted online through a prominent and conspicuous link using the word “privacy” on the organization’s website homepage or the download or landing page of a mobile application.

Besides, organizations must allow consumers to opt-out of the sale or sharing of personal information and limit the use of their sensitive personal information (under the new law, California Privacy Rights Act). Therefore, organizations must not load any non-essential cookies before notifying data subjects adequately, providing them an opt-out option, and letting them acknowledge the notification.

Moreover, the CCPA requires organizations to obtain the data subject’s consent to sell personal data belonging to minors. Where an organization has actual knowledge that the data subject is less than 16 years of age, it must rely on the explicit opt-in consent for the sale of their personal data and obtain consent from data subjects if they are at least 13 years of age and less than 16 years of age and from parents or guardians of data subjects where they are less than 13 years of age.

GDPR (opt-in consent regime) and CCPA (opt-out consent regime) are not the only examples of data protection laws that require cookie consent notices. Many countries have drafted their laws based on the framework set up by GDPR and CCPA, and therefore, cookie consent notices are required by most global privacy regulations.

A summary of cookie consent banner requirements under opt-in and opt-out consent regimes.

Previous Topic
Back to Lesson
Next Topic

Company

Resources

Terms

Get in touch

[email protected]
Securiti, Inc.
300 Santana Row
Suite 450
San Jose, CA 95128

Copyright © 2024 SECURITI.ai

Sitemap - XML Sitemap