A non-public document issued by a data controller that directs data processors to adhere to certain privacy
principles while processing personal information may be referred to as:
A multinational company with operations in several parts within EU and outside EU, involves international
data transfer of both its employees and customers. In some of its EU branches, which are relatively larger
in size, the organization has a works council. Most of the data transferred is personal, and some of the
data that the organization collects is sensitive in nature, the processing of some of which is also
outsourced to its branches in Asian countries.
For the outsourced work of its customers' data processing, in order to initiate data transfer to another
organizations outside EU, which is the most appropriate among the following?
A Privacy Impact Assessment (PIA) should ideally accomplish which of the following goals?
A company collects personal information about its employees and requests them to provide accurate information in order to avail benefits such as life insurance and medical insurance. Employees of the company have raised concerns about use of their personal information. Due to the concerns, the company has decided to create a privacy policy. What all should the company include in its privacy policy to address the raised concerns?
Privacy enhancing tools aim to allow users to take one or more of the following actions related to their
personal data that is sent to, and used by online service providers, merchants or other users:
i. Increase control over their personal data
ii. Choose whether to use services anonymously or not
iii. Obtain informed consent about sharing their personal data
iv. Opt-out of behavioral advertising or any other use of data
Please select correct option from below:
