DCPP-01

Select the element(s) of APEC cross border privacy rules system from the following list: i. self-assessment ii. compliance review iii. recognition/acceptance by APEC members iv. dispute resolution and enforcement Please select correct option:A . i, ii and iiiB . ii, iii, and ivC . i, iii and ivD . i,...

Which of the following statements are true about the privacy statement of an organization?A . Content of the online privacy statement of an organization will depend upon the applicable laws, and may need to address requirements across geographical boundaries and legal jurisdictionsB . As per privacy laws generally it is...

A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some...

Please select the incorrect statement in context of “Online Privacy”:A . A person’s act of ‘Selective disclosure” (of themselves) in an online environmentB . A person’s concern over usage of information that were collected during an online activityC . A person’s control over collection of information during an online activityD...

A ministry under government of India plans to collect citizens’ information related to their education, medical condition, economic status, caste and religion. As per the privacy requirements mentioned under Sec 43A of IT (Amendment) Act, 2008, the citizens’ ‘Consent’ would be mandatory for which of the following elements before their...

Which of the following wasn't prescribed as a privacy principle under the OECD Privacy Guidelines, 1980?A . OpennessB . Data minimizationC . Security SafeguardD . Purpose SpecificationView AnswerAnswer: B Explanation: Reference: https://www.oecd.org/internet/ieconomy/oecdguidelinesontheprotectionofprivacyandtransborderflowsofpersonaldata.htm

‘Challenging Compliance’ as a privacy principle is covered in which of the following data protection/privacy act?A . Federal Data Protection Act, GermanyB . UK Data Protection ActC . PIPEDAD . Singapore Data Protection ActView AnswerAnswer: C

You are part of a team that has been created by Indian government to create India’s privacy law based on recommendations in Justice AP Shah’s Report. Which of the following provisions should be addressed in the law?A . Privacy as an explicit fundamental constitutional rightB . Offences, penalties and remediesC...

As per Article 33 of GDPR, in case of a personal data breach, the data controller has to inform the supervisory authority within ___________ of becoming aware of the breach.A . 48 hoursB . 14 daysC . 72 hoursD . 24 hoursView AnswerAnswer: C Explanation: Reference: https://gdpr-info.eu/art-33-gdpr/

Complete the sentence: The Gramm-Leach-Bliley Act (GLBA) of US regulates the privacy practices adopted by financial institutions, requiring them to provide adequate security of the customer records. It lays various obligations on the financial institutions but allows such financial institutions to share the non-public information of customers (after properly notifying...