IAPP CIPP-A CIPPA Exam Practice Test Instant Access

Question 1

According to India's IT Rules 2011, a body corporate operating in India is required to appoint what kind of authority?

AA Chief Risk Officer.

BA Grievance Officer.

CA Data Protection Officer.

DA Chief Technology Officer.

Answer : B

Question 2

Which method ensures the greatest security when erasing data that is no longer needed, according to the Hong Kong Office of the Privacy Commissioner?

AStrip-shredding paper copies of data.

BCrosscut shredding paper copies of data.

CDeleting electronic files containing data.

DReformatting USB memory devices containing data.

Answer : B

Question 3

Although the right to privacy is not explicitly granted in the Indian Constitution, privacy advocates frequently cite Article 21's guarantee of?

APersonal liberty.

BRight to property.

CEquality before the law.

DFreedom from intrusion.

Answer : A

Question 4

What clarification did India make in a 2011 Press Note regarding their Sensitive Personal Data Rules?

AThat the rules apply to data subjects located outside of India.

BThat the rules apply to persons or companies collecting sensitive data within India.

CThat the data processor must provide notice to the data subject before data is processed.

DThat sensitive personal data or information includes passwords, financial information, medical records, and
biometric information.

Answer : D

Question 5

In 2015, Section 66A of India's IT Act was ruled unconstitutional. What did this section previously prohibit?

APublishing images with sexually explicit content.

BTampering with computer source documents.

CPublishing private images of others.

DSending offensive messages.

Answer : D

Question 6

Under the General Data Protection Regulation (GDPR), European Union member states may be allowed to transfer personal data to the United States in some cases.

Which of the following could NOT be used as a legitimate means of doing this?

AA consent derogation.

BA certification mechanism.

CThe Safe Harbor Framework.

DBinding Corporate Rules (BCR).

Answer : C

Question 7

Which of the following countries will continue to enjoy adequacy status under the GDPR, pending any future European Commission decision to the contrary?

AArgentina.

BMexico.

CTaiwan.

DKorea.

Answer : A

IAPP Certified Information Privacy Professional/Asia CIPP/A Exam Practice Test