Which of the following statements is true with respect to organization's privacy training and awareness program?

• A.Should define roles and responsibilities of personnel in privacy function
• B.Should cover employees of service provider dealing with personal information
• C.Should necessarily cover official from Law Enforcement Agencies that request lawful access to personal information
• D.None of the above

Comment: *

Name: *

Email: *

Verification: *

According to the EU, which of the following steps is not relevant when transferring data from an EU member to a third country that does not meet EU standards?

• A.Aligning data protection legislation across geographies
• B.Obtaining approval by the Data Protection Authority or informing it
• C.A model contract is signed
• D.Sizing up the security measures employed by the importing organization to account for the sensitivity of the data being transferred

Comment: *

Name: *

Email: *

Verification: *

A newly appointed Data Protection officer is reviewing the organization's existing privacy policy. Which of the following would be the most critical factor for the review process?

• A.Awareness of the business units about the privacy policy
• B.Changes in the legal/regulatory regime
• C.Privacy policies of industry peers
• D.Foreseeable challenges in the effective implementation of the policy

Comment: *

Name: *

Email: *

Verification: *

Specifically, what section of the IT (Amendment) Act, 2008 lays down the provisions for punishment for the offense of wrongful disclosure of personal information with the intention of causing loss or gain to another?

• A.Section 72A
• B.Section 65
• C.Section 72
• D.Section 43A

Comment: *

Name: *

Email: *

Verification: *

Choose from the options below to group privacy principles into user centric (requiring people's involvement) and organization centric (restricted to processes within the organization) categories:

• A.User Centric: Choice, Collection Limitation, Access and Correction Organization Centric: Notice, Use Limitation, Security, Disclosure to third party, Accountability
• B.User Centric: Notice, Consent, Collection Limitation, Access and Correction Organization Centric: Choice, Use Limitation, Security, Disclosure to third party, Openness, Accountability
• C.User Centric: Notice, Openness, Accountability Organization Centric: Consent, Choice, Collection Limitation, Use Limitation, Security, Disclosure to third party, Access & Correction
• D.User Centric: Notice, Consent, Choice, Access & Correction Organization Centric: Consent, Collection Limitation, Use Limitation, Security, Disclosure to third party, Openness, Accountability

Comment: *

Name: *

Email: *

Verification: *