Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu
sale

Want to Unlock All Questions for this Exam?

Full Exam Access, Discussions, No Robots Checks

27
Students signed up in the last 24H

DSCI DCPP-01 Exam Actual Questions

The questions for DCPP-01 were last updated on May 1, 2024.
  • Viewing page 1 out of 41 pages.
  • Viewing questions 1-4 out of 170 questions
 

Topic 1 - Topic 1, Privacy Principles and Regulations

Question #1 Topic 1

APEC privacy framework envisages common principles such as Notice, Collection limitation, Use Limitation, Access and Correction, Security/Safeguards, and Accountability. But it differs from the EU Data Protection Directive in which of the below aspect?

  • A. APEC privacy framework does not deal with the usage of personal information
  • B. APEC privacy framework does not mandate the binding treaties or directives for member countries
  • C. APEC privacy framework does not have a provision for co-operation between privacy enforcement agencies of members
  • D. APEC privacy framework does not deal with e-commerce
Reveal Solution Hide Solution   Discussion  

Correct Answer: B 🗳️

Question #2 Topic 1

A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
Which of the following are not mandatory pre-requisite before transferring sensitive personal data to its Asian branches?

  • A. Notifying the data subject
  • B. Conducting risk assessment for the processing involved
  • C. Determining adequacy status of the country
  • D. Self-certifying to Safe Harbor practices and reporting to Federal Trade Commission
Reveal Solution Hide Solution   Discussion  

Correct Answer: D 🗳️

Question #3 Topic 1

A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
For exporting EU branch employees’ data to Asian Countries for processing, which of the following instruments could be used for legal data transfer?

  • A. Customized contracts mandating ISO 27001 certification by the data processor
  • B. Standard Contractual Clauses
  • C. Binding Corporate Rules
  • D. Privacy Shield Framework
Reveal Solution Hide Solution   Discussion   1

Correct Answer: D 🗳️

Question #4 Topic 1

A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
For the outsourced work of its customers’ data processing, in order to initiate data transfer to another organizations outside EU, which is the most appropriate among the following?

  • A. The vendor (data importer) in the third country, and not the exporter is responsible to put in place suitable model contractual clauses, and hence the exporter does not need to take any action.
  • B. Since the data is processed by the vendor outside the EU, the EU directive does not apply and hence there are no legal concerns
  • C. The data exporter needs to initiate model contractual clauses after obtaining approvals from data protection commissioner and have the vendor be a signatory on the same as data importer
  • D. The data importer need to notify about the transfer to data protection commissioner in the destination country and exporter need to similarly notify in the EU country of origin
Reveal Solution Hide Solution   Discussion  

Correct Answer: D 🗳️

Next Questions

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel