AICPA & CIMA Privacy Management Framework

Speaker: Thomas Patterson, CPA, CISA, CGEIT, CRISC

Format

Video

Level

Basic

Duration

50m

This session reviews Privacy Management Framework (PMF). This 2020 re-issued framework provides members (CPAs and CITPs) with relevant links to the EU’s General Data Protection Regulation (GDPR) and the AICPA’s Trust Services Criteria (TSC).

Learning outcomes

Identify the nine components of the Privacy Management Framework.
Recognize how to measure an organization’s privacy program against a comprehensive framework.
Identify ways that incorporating the Privacy Management Framework into your organization’s privacy program can help provide a structure for compliance, management and audit criteria.
Apply best practices to manage personal information and mitigate privacy risk for an organization

£35.00 (CIMA members only)

£45.00

VAT calculated on checkout

Product information

Overview

As significant changes continued to have an important impact on information technologies and in global, country-specific and local data privacy laws and standards, in 2009 a American Institute of CPAs (AICPA) Privacy Task Force was formed and published its Generally Accepted Privacy Principles (GAPP), a framework for implementing sound data privacy controls.

Since 2009, new global and local privacy legislation was enacted, necessitating the AICPA to revisit the GAPP document, and update it to reflect the impact of these requirements such as the EU’s General Data Protection Regulation (GDPR). Now renamed the Privacy Management Framework (PMF), this 2020 re-issued framework provides members (CPAs and CITPs) with relevant links to the EU’s General Data Protection Regulation (GDPR) and the AICPA’s Trust Services Criteria (TSC) which had also been updated to align with updates required by the release of SSAE18. The new PMF is designed to assist management in creating an effective data privacy program that addresses its privacy obligations and risks, while facilitating current and future business opportunities for CPAs and CITPs who might be engaged with an organization's management in these activities.

Professional development

All learning resources available in the CGMA Store qualify for CPD for CIMA members.

Prerequisites:	1-2 Years in the Profession
Programme level:	Basic
Duration:	50m
Format:	Video
Access:	This is a digital product. You will have access to the content for a year after purchase date.

Return and refund policy

£35.00 (CIMA members only)

£45.00

VAT calculated on checkout

Speaker

Thomas Patterson, CPA, CISA, CGEIT, CRISC
Tom Patterson is a CPA whose 30 year career has focused in leading and performing IT audit, risk advisory, and IT security engagements in the US and internationally in Europe and Southeast Asia. For 13 years, he led and delivered COSO internal control implementation engagements, and IT audit and security consulting services at PwC, and later with KPMG. After a 3 year role leading a European foreign filer's SOX404 implementation effort, he returned to the US where he spent 9 years delivering security advisory and managed services engagements for IBM Security in the US and SE Asia. ince 2009 Tom's been a regular& AICPA volunteer first with the Trust Services Task Force (SOC 2/3) and recently with the IMTA supporting the analysis and writing of the Privacy Management Framework and PMF Mapping Tool, a 2020 update to the 2009 Generally Accepted Privacy Principles (GAPP) guideline.