Based on GDPR Article 35, which of the following situations would trigger the need to complete a DPIA?

• A.A company wants to use location data to infer information on a person's clothes purchasing habits.
• B.A company wants to use location data to track delivery trucks in order to make the routes more efficient.
• C.A company wants to combine location data with other data in order to offer more personalized service for the customer.
• D.A company wants to build a dating app that creates candidate profiles based on location data and data from third-party sources.

Comment: *

Name: *

Email: *

Verification: *

According to the GDPR, what is the main task of a Data Protection Officer (DPO)?

• A.To conduct Privacy Impact Assessments on behalf of the controller or processor.
• B.To create procedures for notification of personal data breaches to competent supervisory authorities.
• C.To create and maintain records of processing activities.
• D.To monitor compliance with other local or European data protection provisions.

Comment: *

Name: *

Email: *

Verification: *

Which of the following indicates you have developed the right privacy framework for your organization?

• A.It works at a different type of organization
• B.It improves the consistency of the privacy program
• C.It includes a privacy assessment of each major system
• D.It identifies all key stakeholders by name

Comment: *

Name: *

Email: *

Verification: *

Which GDPR requirement will present the most significant challenges for organizations with Bring Your Own Device (BYOD) programs?

• A.Processing of special categories of personal data on a large scale requires appointing a DPO.
• B.Data subjects must be sufficiently informed of the purposes for which their personal data is processed.
• C.Personal data of data subjects must always be accurate and kept up to date.
• D.Data controllers must be in control of the data they hold at all times.

Comment: *

Name: *

Email: *

Verification: *

Which of the following would most likely NOT be covered by the definition of "personal data" under the GDPR?

• A.The payment card number of a Dutch citizen
• B.The identification number of a German candidate for a professional examination in Germany
• C.The U.S. social security number of an American citizen living in France
• D.The unlinked aggregated data used for statistical purposes by an Italian company

Comment: *

Name: *

Email: *

Verification: *