DSCI DCPP-01 Exam Practice Test Instant Access

Question 1

According to RTI Act, under which conditions can a government department refuse to release information?

ANational security adversely affected by such information

BThis information is detrimental to the stability of the ruling party in government

CDetrimental effect on the public image of government agencies

DIn the absence of a public interest, such information may adversely impact the privacy of its officials

Answer : A, D

Question 2

In the wake of privacy-related concerns arising from various policies around the world, which of the following has not driven increased regulatory responses?

AData privacy professionals are in high demand

BData flows across borders and outsourcing in a globalized world

CRapid growth of social networking sites, which are used to share a lot of personal information

DInformation about individuals having a greater economic value

Answer : A

Rising demand of data privacy professionals is not concern.

Question 3

Regulations that apply to the processing of personal data of natural persons that fall under the following categories:

AEU Citizens

BAll of the above

CResident of anywhere in the world

DEU Residents

Answer : D

Page no 4 of PBok Addendum: The EU GDPR is applicable to all EU residents. The usage of the term 'residents' is to be noted -- it means that the resident need not be a citizen of any EU member state. It could be any individual who resides in the EU.

Question 4

Choose from the options below to group privacy principles into user centric (requiring people's involvement) and organization centric (restricted to processes within the organization) categories:

AUser Centric: Choice, Collection Limitation, Access and Correction Organization Centric: Notice, Use Limitation, Security, Disclosure to third party, Accountability

BUser Centric: Notice, Consent, Collection Limitation, Access and Correction Organization Centric: Choice, Use Limitation, Security, Disclosure to third party, Openness, Accountability

CUser Centric: Notice, Openness, Accountability Organization Centric: Consent, Choice, Collection Limitation, Use Limitation, Security, Disclosure to third party, Access & Correction

DUser Centric: Notice, Consent, Choice, Access & Correction Organization Centric: Consent, Collection Limitation, Use Limitation, Security, Disclosure to third party, Openness, Accountability

Answer : B

Page No 36 of PBok At a high level, Privacy Principles can be grouped into the following two categories: Principles that advocate user engagement: Principles such as Notice, Consent, Collection Limitation, Access & Correction etc. are user centric principles and involve user transactions. Principles that are aligned to organizational context: Principles such as Purpose Limitation, Accountability, Disclosure, Security/Safeguard etc. talk about the norms and organizational measures for ensuring privacy protection by the organization.

Question 5

According to which of the following data privacy laws does "challenging compliance" fall under?

APIPEDA

BFederal Data Protection Act

CUK Data Protection Act

DAPEC Framework

Answer : A

Question 6

According to the privacy statement of an organization, which of the following words is true?

AThe Information Technology (Amendment) Act, 2008 does not require the publication of privacy policies on websites in India

BThe content of an organization's online privacy statement will be influenced by the applicable laws, and may need to address requirements across geographic boundaries and legal jurisdictions

CA privacy statement demonstrates to stakeholders how an organization gathers, uses, discloses, and manages personal information

DIn order to follow privacy laws, it is mandatory that there is a phone contact information for the organization's owner in the online privacy statement so that customers can reach out in case of a concern or incident, which can be managed online

Answer : B

Question 7

How soon after becoming aware of the breach the data controller has to notify the supervisory authority under Article 33 of GDPR.

A17 hours

B24 hours

C36 hours

D72 hours

Answer : D

DSCI DCPP-01 DSCI Certified Privacy Professional Exam Practice Test