Indian constitution does not expressly provide for the "right to privacy" to its citizens. However, there were various judicial pronouncements of the apex court which finally established the "right to privacy" as a fundamental right subsumed under Article 21 of the constitution of India. Article 21 inter alia provides and protects the __________________.
A. Right to Life and Personal liberty
B. Right to Opportunity
C. Right to Freedom of Speech and Expression
D. Right to Equality before law
Which among the following is the Canadian privacy law?
A. COPPA
B. PIPEDA
C. HIPAA
D. IT Act of Canada
ABC company is a large US based IT Company that provides a range of services to its clients. The company had developed a cloud based application providing end-to-end services for the medical industry. The application had three modules for: -Patients -Hospitals and Doctors -Insurance and Pharmaceutical companies
Each of the modules was designed to be integrated with others depending on user's choice. For example, a patient could choose to share his/her medical history with his/her doctor (for medical advice) as well as insurance companies (for claims).
The application requires that all registered users of the application read and acknowledge the privacy policy. Additionally, users are required to identify the purpose for which they are providing any personal data in any of the modules. For example, a patient providing his/her medical history and current symptoms can select `Medical Advice' as the purpose for the data being provided.
Few months ago, company launched new services in the applications namely, Business Analytics, Group Consultations, Insurance Policy purchase, and Medical Trials Management. The new services used all existing data collected over the years from users. The Company's clients/users are based only in three geographical locations - United States, European Union and India. Additionally, to facilitate better performance of its application, the company established one datacenter each in US, Germany and India for its operations. Each of the datacenter provides the following: -US Datacenter - Storage of data for US based users only -Germany Datacenter - Storage of data for EU based users only -India Datacenter - Storage of data for India based users and alternate site for US and Germany Datacenters (used as part of global load balancing) -Services of a cloud service provider are leveraged in US as a Disaster Recovery (DR) site for Indian Datacenter Recently, the company's Application Support Desk has started receiving user complaints related to unsolicited communications.
These complaints have warranted a review of company's privacy policies as well as practices.
The use of all user data for business analytics would be in direct conflict with which of the following privacy principles?
A. Access and Correction
B. Collection Limitation
C. Data Quality
D. Use Limitation
Which of the following provides the legal basis for an Adjudicating Officer in every Indian state and union territory, with the powers of a civil court, to hear complaints and order compensation to the affected individuals?
A. Indian Civil Code
B. Indian Criminal Procedure Code
C. Telecom Regulatory Authority of India (TRAI) Act
D. Information Technology Act, 2000 and Information Technology (Amendment) Act, 2008
According to IT (Amendment) Act,2008, who should designate a grievance officer to redress grievance(s) of provider of information?
A. Data processor
B. Third party agency collecting personal information
C. Body corporate, which determines the means and purpose of data processing
D. Natural person sharing his/her information
You are part of a team that has been created by Indian government to create India's privacy law based on recommendations in Justice AP Shah's Report.
Which of the following provisions should be addressed in the law?
A. Privacy as an explicit fundamental constitutional right
B. Offences, penalties and remedies
C. National privacy principles
D. Setup of a national data controller registry
Which of the following privacy regulation advocates de-identification of personal information?
A. EU Data Protection Directive
B. Canada's PIPEDA
C. Australia's ANPP
D. IT Act of India
XYZ and Co., an Indian hospital specialized in dealing with cancer treatment has organized a free health checkup camp for women in a specific district, after seeking due permission from competent authorities. During the camp the hospital staffs will be feeding the medical records of these women into the computer connected to hospital network system.
Does the said hospital need to notify its privacy policy to the women attending the camp and seek their consent regarding the collection and processing of such information?
A. No, since it is a free checkup camp for their welfare
B. Yes, in the any language as per the wishes of said hospital
C. No, since the law does not require the same in this case
D. Yes, in the language such women would understand
Under which of the following conditions can a company in India may transfer sensitive personal information (SPI) to any other company or a person in India, or located in any other country?
A. Transfer of information is allowed to those who ensure the same level of data protection that is adhered to by the company as provided for under the Indian laws
B. The transfer of information is allowed only after taking approval of Chief Information Commissioner of India
C. The transfer of information is allowed only after taking approval of ministry of electronics and information technology
D. The transfer may be allowed only if it is necessary for the performance of the lawful contract or where the data subject has consented to data transfer
Which of the following categories of information are generally protected under privacy laws?
A. Personally Identifiable Information (PII)
B. Sensitive Personal Information (SPI)
C. Trademark, copyright and patent information
D. Organizations' confidential business information
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only DSCI exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DCPP-01 exam preparations and DSCI certification application, do not hesitate to visit our Vcedump.com to find your solutions here.