Download DSCI certified Privacy Professional.test-inside.DCPP-01.2020-04-03.1e.37q.vcex


Download Exam

File Info

Exam DSCI certified Privacy Professional
Number DCPP-01
File Name DSCI certified Privacy Professional.test-inside.DCPP-01.2020-04-03.1e.37q.vcex
Size 26 Kb
Posted April 03, 2020



How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Purchase
Coupon: EXAMFILESCOM

Coupon: EXAMFILESCOM
With discount: 20%


 
 



Demo Questions

Question 1
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries. 
Which of the following are not mandatory pre-requisite before transferring sensitive personal data to its Asian branches?

  • A: Notifying the data subject
  • B: Conducting risk assessment for the processing involved
  • C: Determining adequacy status of the country
  • D: Self-certifying to Safe Harbor practices and reporting to Federal Trade Commission



Question 2
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries. 
For exporting EU branch employees’ data to Asian Countries for processing, which of the following instruments could be used for legal data transfer?

  • A: Customized contracts mandating ISO 27001 certification by the data processor
  • B: Standard Contractual Clauses
  • C: Binding Corporate Rules
  • D: Safe Harbor 



Question 3
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries. 
For the outsourced work of its customers’ data processing, in order to initiate data transfer to another organizations outside EU, which is the most appropriate among the following?

  • A: The vendor (data importer) in the third country, and not the exporter is responsible to put in place suitable model contractual clauses, and hence the exporter does not need to take any action.
  • B: Since the data is processed by the vendor outside the EU, the EU directive does not apply and hence there are no legal concerns
  • C: The data exporter needs to initiate model contractual clauses after obtaining approvals from data protection commissioner and have the vendor be a signatory on the same as data importer
  • D: The data importer need to notify about the transfer to data protection commissioner in the destination country and exporter need to similarly notify in the EU country of origin



Question 4
With reference to APEC privacy framework, when personal information is to be transferred to another person or organization, whether domestically or internationally, “the ______________ should obtain the consent of the individual and exercise due diligence and take reasonable steps to ensure that the recipient person or organization will protect the information consistently with APEC information privacy principles”.

  • A: Personal Information Owner
  • B: Personal Information Controller
  • C: Personal Information Processor
  • D: Personal Information Auditor 



Question 5
With respect to ‘Data Minimization’ privacy principle, please select the correct statements from the following:

  • A: Right to object by the data subject for minimizing the collection of personal information
  • B: Data controllers should limit the amount of data collected to what is directly relevant and necessary to accomplish a specified purpose
  • C: Data controllers should retain the data only for as long as is necessary to fulfil the purpose for which it was collected
  • D: Process of analyzing and minimizing the collected data into useful information



Question 6
Which of the following privacy principle deals with informed consent of the data subject before sharing the personal information (of the data subject) to third parties for processing?

  • A: Collection limitation
  • B: Purpose limitation
  • C: Disclosure of information
  • D: Accountability



Question 7
Please select the incorrect statement in context of “Online Privacy”:

  • A: A person’s act of ‘Selective disclosure” (of themselves) in an online environment
  • B: A person’s concern over usage of information that were collected during an online activity
  • C: A person’s control over collection of information during an online activity
  • D: A person’s concern on the software licensing agreement they sign with any organization



Question 8
Companies based in EU and willing to transfer data outside the EU/EEA, use model contracts as an instrument. Which of the following statements are true in reference to above statement?

  • A: It is a requirement mentioned in EU Data Protection Directive
  • B: It is a requirement mentioned in the OECD Privacy Framework
  • C: It is a requirement mentioned in the EU E-Commerce Directive
  • D: None of the above



Question 9
Select the element(s) of APEC cross border privacy rules system from the following list:
i. self-assessment 
ii. compliance review 
iii. recognition/acceptance by APEC members 
iv. dispute resolution and enforcement 
Please select correct option:

  • A: i, ii and iii
  • B: ii, iii, and iv
  • C: i, iii and iv
  • D: i, ii, iii and iv



Question 10
A ministry under government of India plans to collect citizens’ information related to their education, medical condition, economic status, caste and religion. As per the privacy requirements mentioned under Sec 43A of IT (Amendment) Act, 2008, the citizens’ ‘Consent’ would be mandatory for which of the following elements before their collection?

  • A: Educational records
  • B: Medical condition
  • C: Caste and religion
  • D: Sec 43A may not be applicable









CONNECT US


ProfExam
PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount..

Get Now!


HOW TO OPEN VCEX AND EXAM FILES

Use ProfExam Simulator to open VCEX and EXAM files
ProfExam Screen



HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset