What Will You Learn?

• The IIM CDPO-ATO framework empowers qualified institutions and organizations to deliver approved training programs that prepare professionals for the IIM Certified Data Protection Officer (CDPO) Examination.
• By collaborating with IIM, Accredited Training Organizations become trusted conduits for developing competent data protection professionals equipped to manage, implement, and audit privacy programs across industries.
• Rubrics for Becoming an Accredited Training Organization (ATO)
• To be recognized as an IIM Accredited Training Organization (ATO), applicants must meet rigorous institutional, operational, and ethical standards. The core rubrics include:
• 1. Institutional Legitimacy:
• Must be a registered legal entity with a verifiable operational structure and clear ownership.
• 2. Qualified Trainers:
• Trainers must hold relevant data protection (IIM-CDPO) certification, along with other relevant information management certifications, demonstrate industry experience, and uphold IIM’s professional ethics.
• 3. Curriculum Compliance:
• Trainer must be able to train using content aligned with NDPC/IIM’s CDPO syllabus, the Nigeria Data Protection Act 2023, and other global frameworks.
• 4. Quality Assurance:
• Must maintain robust internal evaluation systems and agree to IIM’s periodic audits, monitoring, and performance reviews.
• 5. Data Protection Compliance:
• Must adhere strictly to the principles of the NDPA 2023 in handling candidates’ personal data.
• 6. Financial & Ethical Accountability:
• Must demonstrate transparency in training fees, candidate registration, and collaboration terms.
• Responsibilities of Accredited Training Organizations
• Once accredited, ATOs are entrusted with the following key responsibilities:
• 1. Program Delivery:
• Conduct IIM-approved CDPO training courses using authorized materials, trainers, and assessment methods.
• 2. Candidate Registration:
• Facilitate the registration of trainees for IIM’s CDPO Certification Examination through provided channels.
• 3. Compliance & Reporting:
• Submit periodic reports on training performance, participant feedback, and examination outcomes.
• 4. Continuous Improvement:
• Engage in regular updates and revalidation of training content and delivery practices to reflect current legal and technological developments.
• 5. Ethical Conduct:
• Uphold IIM’s values of professionalism, integrity, and impartiality in all training and candidate engagement activities.
• Conclusion
• Through this program, the Institute of Information Management (IIM) seeks to build a nationwide and global network of credible training institutions committed to advancing data protection professionalism and fostering trust in the digital economy, shaping the next generation of Certified Data Protection Officers, ethical, competent, and ready to lead in an increasingly data-driven world.