Anonymity networks and platforms for Privacy Preferences Project (P3P) are generally _________.
A. Privacy-enhancing tools and technologies to mask data
B. Web based privacy-enhancing technologies
C. Network based privacy-enhancing technologies
D. Both "Privacy-enhancing tools and technologies to mask data" and "Web based privacy-enhancing technologies"
Data Protection Impact Assessment requirement, under GDPR is triggered if the organization is engaged in which of the following activities?
A. Processing on a large scale of special categories of data
B. Processing of personal data relating to criminal convictions and offenses
C. Systematic monitoring of a publicly accessible on a large scale
D. All the above
Which one of the following methods for obtaining consent will be unacceptable under the General Data Protection Regulation, 2016?
A. Verbal Agreement
B. Opt-in Tick Box
C. Written Agreement
D. Pre-Ticked Boxes
Rising economic value of personal information has stressed the need for a comprehensive __________ legislation in India.
A. Right to Internet
B. Privacy
C. Right to Information
D. Dispute resolution
Following aspects can serve as inputs to a privacy organization for ensuring privacy protection:
I. Privacy related incidents detected/reported
II. Contractual obligations
III. Organization's exposure to personal information
IV.
Regulatory requirements
A.
I, II and III
B.
II and IV
C.
I, II, III and IV
D.
None of the above, as privacy and compliance protection mechanisms are evolved based only on organization's privacy policies and procedures
Data Protection officer is reviewing the organization's existing privacy policy. Which of the following would be the most critical factor for the review process?
i. Policy definition
ii. Policy enforcement
iii. IT infrastructure setup
iv.
Physical infrastructure setup
A.
Only i.
B.
Only i. and ii.
C.
i, ii, iii and iv.
D.
i, ii and iii
There are several privacy incidents reported in an organization. The organization plans to analyze and learn from these incidents. Which privacy practice will the organization have to implement for the same?
A. Information usage and access
B. Privacy contract management
C. Privacy awareness and training
D. Privacy monitoring and incident management
A newly appointed Data Protection officer is reviewing the organization's existing privacy policy. Which of the following would be the most critical factor for the review process?
A. Awareness of the business units about the privacy policy
B. Changes in the legal/regulatory regime
C. Privacy policies of industry peers
D. Foreseeable challenges in the effective implementation of the policy
XYZ bank has recently decided to start offering online banking services. For doing so, the bank has outsourced its IT operations and processes to various third parties. Acknowledging privacy concerns, bank has decided to implement a privacy program.
Assuming you have been tasked to deploy this framework for the bank, which of the following would most likely be your first step?
A. Create an inventory of business processes that deal with personal information and identify the associated data element.
B. Ensure that bank is equipped to test the relevance of each legal and compliance requirement in its environment.
C. Assign privacy roles and responsibilities for process owners.
D. Any of the above as order is irrelevant.
Rakesh is leading a project to develop a wellness products website wherein customers can find product information, perform product comparison, and provide reviews. In order to purchase, compare and review the products, customers are required to register on the site. Rakesh and team have come up with a lengthy registration form with all the fields marked as mandatory, though all not required for the primary purpose. As a privacy professional, what is your observation?
A. Rakesh is not violating anything, as the data collected can be used for targeted advertisements
B. Rakesh is collecting additional information as it can be used to assist Law Enforcement Agencies at later stage
C. Rakesh is proactive and efficient by collecting more data than required for the future purposes for organizations' benefits
D. Rakesh should collect minimum information required only for primary business purpose
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only DSCI exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DCPP-01 exam preparations and DSCI certification application, do not hesitate to visit our Vcedump.com to find your solutions here.