DataCol technologies is a technology company specializing in providing Healthcare IT solutions. DataCol
has recently developed a mobile app to collect data specific to healthcare. The app also helps in collating
and classifying the data based on customizable parameters. National Center for Disease Statistics (NCDS)
decides to pilot this app and provide it to the agencies who collect data such as health status,
immunization status, known health problems etc. from various communities and classify it as per
guidelines from NCDS.
What is the role of agencies collecting data in this scenario?
A. Data Controller
B. Data Processor
C. Data Subject
D. Sub Processor
Rashmi recently started working as a customer care representative for a bank. After receiving a customer complaint over the phone, she wrote an email to send to grievance department in the bank. The email included customer's full name, bank account number, residential address, email address and contact number. She picked 2-3 resources/employees from the intranet site of the bank, which belonged to the grievance department and sent the email.
Please select the most ideal scenario from a privacy point of view?
A. Rashmi should have included some of the customer information in the email and send to grievance team.
B. Rashmi did the right thing by sharing all customer details to parties identified from company intranet.
C. Rashmi should have ascertained who in the grievance team is/are authorized to handle the complaint request and only then should have sent the customer details to the concerned person(s).
D. none of the above
Vijay was part of the core marketing team from last five years in a financial organization A. This year, he left the organization and moved into a new organization B providing similar products and services as organization A. Vijay used contact details of some of the customers of organization A, leveraging his friends in Organization A. He used them to provide services of Organization B, hence overall benefitting the Organization B, without informing Organization B about the source of contact details. Customers were satisfied too from the service of Organization B.
Which of the following statements could be correct?
A. Organization A is at fault because it failed to stop Vijay from accessing contact details of its customers through its current employees.
B. Organization B is at fault because it used contacts details provided by Vijay, without ensuring whether data subject's consent was taken or not.
C. Vijay is at fault because he has breached privacy of Organization A by obtaining information through illegitimate means.
D. No one because customers were satisfied from the product and service they received.
In the landmark case _____________________ the Honourable Supreme Court of India reaffirmed the status of Right to Privacy as a Fundamental Right under Part III of the constitution.
A. M. P. Sharma and others vs. Satish Chandra, District Magistrate, Delhi, and others
B. Maneka Gandhi vs. Union of India
C. Justice K. S. Puttaswamy (Retd.) and Anr. vs. Union of India And Ors
D. Olga Tellis vs. Bombay Municipal Corporation
Which of the following best describes the practice of delivering specifically targeted advertisements to users, based on their online activities?
A. Digital Marketing
B. Behavioral Advertising
C. Tracking
D. Profiling
How are privacy and data protection related to each other?
A. Data protection is a subset of privacy.
B. Privacy is a subset of data protection.
C. The terms `privacy' and `data protection' are interchangeable.
D. They're unrelated concepts.
Company A collects and stores information from people X and Y on behalf of company B. Which of the following statements are true?
A. A is the data controller since it collects data directly from X and Y
B. B is the data controller while A is the sub processor as B has outsourced the data collection and processing to A
C. B is the data controller that uses A as data processor to collect and process data of data subjects X and Y
D. Both A and B are data controllers since both need to maintain highest principles of data protection
What does PHI stand for, as per HIPAA/ HITECH?
A. Personal healthcare information
B. Public health information
C. Protected health information
D. Personal health information
Which of the following statement about Personally Identifiable Information (PII) is true?
A. PII is necessarily a single data element, not a combination of data elements, which can uniquely identify an individual
B. PII is a subset of Sensitive Personal Information
C. PII is any information about a legal entity including details of its registration or any information that may allow its easy identification
D. None of the above
A government agency collecting biometrics of citizens can deny sharing such information with Law Enforcement Agencies (LEAs) on which of the following basis?
A. The purpose of collecting the biometrics is different than what LEAs intent to use it for
B. The consent of data subjects has not been taken
C. Government agencies would share the biometrics with LEAs on one condition if LEA properly notify the citizens
D. None of the above, as government agencies would never deny any LEA for sharing such information for the purpose of mass surveillance
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only DSCI exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your DCPP-01 exam preparations and DSCI certification application, do not hesitate to visit our Vcedump.com to find your solutions here.