A large online bookseller decides to contract with a vendor to manage Personal Information (PI). What is the least important factor for the company to consider when selecting the vendor?

• A.The vendor's reputation
• B.The vendor's financial health
• C.The vendor's employee retention rates
• D.The vendor's employee training program

Comment: *

Name: *

Email: *

Verification: *

What are banks required to do under the Gramm-Leach-Bliley Act (GLBA)?

• A.Conduct annual consumer surveys regarding satisfaction with user preferences
• B.Process requests for changes to user preferences within a designated time frame
• C.Provide consumers with the opportunity to opt out of receiving telemarketing phone calls
• D.Offer an Opt-Out before transferring PI to an unaffiliated third party for the latter's own use

Comment: *

Name: *

Email: *

Verification: *

Which of the following is commonly required for an entity to be subject to breach notification requirements under most state laws?

• A.The entity must have employees in the state
• B.The entity must be an information broker
• C.The entity must be registered in the state
• D.The entity must conduct business in the state

Comment: *

Name: *

Email: *

Verification: *

Although an employer may have a strong incentive or legal obligation to monitor employees' conduct or behavior, some excessive monitoring may be considered an intrusion on employees' privacy? Which of the following is the strongest example of excessive monitoring by the employer?

• A.An employer who installs a video monitor in physical locations, such as a warehouse, to ensure employees are performing tasks in a safe manner and environment.
• B.An employer who installs data loss prevention software on all employee computers to limit transmission of confidential company information.
• C.An employer who installs video monitors in physical locations, such as a changing room, to reduce the risk of sexual harassment.
• D.An employer who records all employee phone calls that involve financial transactions with customers completed over the phone.

Comment: *

Name: *

Email: *

Verification: *

Privacy Is Hiring Inc., a CA-based company, is an online specialty recruiting firm focusing on placing privacy professionals in roles at major companies. Job candidates create online profiles outlining their experience and credentials, and can pay $19.99/month via credit card to have their profiles promoted to potential employers. Privacy Is Hiring Inc. keeps all customer data at rest encrypted on its servers.
Under what circumstances would Privacy Is Hiring Inc., need to notify affected individuals in the event of a data breach?

• A.If law enforcement has completed its investigation and has authorized Privacy Is Hiring Inc. to provide the notification to clients and applicable regulators.
• B.If the job candidates' credit card information and the encryption keys were among the information taken.
• C.If Privacy Is Hiring Inc., reasonably believes that job candidates will be harmed by the data breach.
• D.If the personal information stolen included the individuals' names and credit card pin numbers.

Comment: *

Name: *

Email: *

Verification: *