Section 43A of the Information Technology (Amendment) Act, 2008 holds ___________ accountable for having reasonable security practices and procedures in place to protection sensitive personal data.
A. GovernmentDataCol technologies is a technology company specializing in providing Healthcare IT solutions. DataCol has recently developed a mobile app to collect data specific to healthcare. The app also helps in collating and classifying the data
based on customizable parameters. National Center for Disease Statistics (NCDS) decides to pilot this app and provide it to the agencies who collect data such as health status, immunization status, known health problems etc. from various
communities and classify it as per guidelines from NCDS.
What is the role of agencies collecting data in this scenario?
A. Data ControllerA multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
For exporting EU branch employees' data to Asian Countries for processing, which of the following instruments could be used for legal data transfer?
A. Customized contracts mandating ISO 27001 certification by the data processorWhen an individual has choice to decide on who else can have access to their personal information, it is called
A. Information PrivacyWith reference to APEC privacy framework, which of the following statements are true?
A. The APEC Privacy Framework is intended to promote a flexible approach to information privacy protection across APEC members, while at the same time avoiding the creation of needless barriers to information flows.With respect to privacy notice, what are the responsibilities of data controller?
A. Providing the notice before or during data collectionRakesh is leading a project to develop a wellness products website wherein customers can find product information, perform product comparison, and provide reviews. In order to purchase, compare and review the products, customers are required to register on the site. Rakesh and team have come up with a lengthy registration form with all the fields marked as mandatory, though all not required for the primary purpose. As a privacy professional, what is your observation?
A. Rakesh is not violating anything, as the data collected can be used for targeted advertisementsFor negligence in implementing and maintaining the reasonable security practices and procedures for protecting Sensitive Personal Data or Information (SPDI) as mentioned in Section 43A and associated rules under IT (Amendment) Act, 2008, a corporate entity may be liable to pay compensation of up to___________
A. Rs. 50,000,000According to The Information Technology (Reasonable Security Practices And Procedures and Sensitive Data or Information) Rules, 2011, which of the following does not fall under the category of Sensitive Personal Data or Information?
A. Sexual orientationAs per GDPR, the adequacy decision is taken the European Commission based on its findings and assessment of privacy laws of the third country, territory, sector, etc. The ____________ is required to provide the Commission with an opinion for the assessment of the adequacy of the level of protection in a third country or international organization, including for the assessment whether a third country, a territory or one or more specified sectors within that third country, or an international organization.
A. European Data Protection BoardNowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only DSCI exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DCPP-01 exam preparations and DSCI certification application, do not hesitate to visit our Vcedump.com to find your solutions here.