New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

DSCI DCPP-01 DSCI certified Privacy Professional (DCPP) Exam Practice Test

Demo: 18 questions
Total 122 questions

DSCI certified Privacy Professional (DCPP) Questions and Answers

Question 1

A country should allow its citizens to access specific information owned by the government in order to bring transparency in the government administration processes. This is the basis for formulation of which of the following rights in India?

Options:

A.

Right to Privacy Act

B.

Right to Information Act

C.

Right to Freedom of Speech and Expression

D.

Right to Social Security

Question 2

Company A collects and stores information from people X & Y on behalf of company B. Which of the following statements are true?

Options:

A.

A is the data controller since it collects data directly from X & Y

B.

B is the data controller while A is the sub processor as B has outsourced the data collection and processing to A

C.

B is the data controller that uses A as data processor to collect and process data of data subjects X and Y

D.

Both A & B are data controllers since both need to maintain highest principles of data protection

Question 3

If XYZ & Co. collects, stores and processes personal information of living persons, electronically in a structured filing system, then XYZ could be a:

Options:

A.

Data Processor

B.

Data Controller

C.

Data Subject

D.

Either A or B

Question 4

Which one of the following is considered as the first step of evolution in the formation of today’s concept of privacy?

Options:

A.

Fundamental civil liberty

B.

Universal declaration of human rights

C.

Right to be left alone

D.

Binding corporate rules

Question 5

Technological advancement is inevitable and the speed of change is exponential. In such a scenario, which of the following statement is not true for defining the relationship between privacy protection and technology advancement, both at individual and corporate levels?

Options:

A.

Maintaining privacy is difficult with emerging platforms and services

B.

Maintaining privacy is difficult, as exercising complete control over personal information in online environment is an uphill task

C.

Technology advancements and privacy protection are independent concepts that are not related

D.

Maintaining privacy in cyberspace becomes easier with proper use of tools and technologies

Question 6

Which of the following does not fall under the category of Personal Financial Information (PFI)?

Options:

A.

Credit card number with expiry date

B.

Bank account Information

C.

Loan account Information

D.

Income tax return file acknowledgement number

Question 7

Under GDPR, the European Commission takes the adequacy decision in relation to privacy laws in a third country, territory, sector etc. A subjective approach is taken. For the assessment of whether a third country, a territory, or one or more specific sectors within that third country, or an international organization has an adequate level of protection, who is required to provide an opinion to the Commission?

Options:

A.

European Data Protection Board

B.

Lead Supervisory Authority

C.

Article 29 Working Party

D.

Convention 108 Council

Question 8

Privacy laws generally protect information in the following categories?

Options:

A.

Trademark and copyright

B.

Personally Identifiable Information (PII)

C.

Company’s Non disclosure agreement

D.

Sensitive Personal Information (SPI)

Question 9

A Privacy Impact Assessment (PIA) should ideally accomplish which of the following goals?

Options:

A.

To determine the risks and effects of collecting, storing and distributing personal information

B.

To evaluate processes for handling personal information for mitigating potential privacy risks

C.

To acknowledge the organization’s role in collecting personal identifiable information

D.

To comply with ISO 27001:2013 standard

Question 10

Which of the following does not fall under the category of Sensitive Personal Data or Information as defined in the Information Technology (Reasonable Security Practices and Procedures and Sensitive Data or Information) Rules, 2011?

Options:

A.

Religious Beliefs

B.

Medical records and history

C.

Sexual orientation

D.

Password

Question 11

APPI, the Act for the Protection of Personal Information, applies to:

Options:

A.

Government entities using personal information

B.

Personal Information about an individual that is used by a business

C.

None of the above

Question 12

From the following list, select the element (elements) that comprise APEC's cross border privacy rules system:

Options:

A.

recognition/acceptance by APEC members

B.

dispute resolution and enforcement

C.

self-assessment

D.

compliance review

Question 13

Select the element(s) of APEC cross border privacy rules system from the following list:

i. self-assessment

ii. compliance review

iii. recognition/acceptance by APEC members

iv. dispute resolution and enforcement

Please select correct option:

Options:

A.

i, ii and iii

B.

ii, iii, and iv

C.

i, iii and iv

D.

i, ii, iii and iv

Question 14

Which of the following privacy regulation advocates de-identification of personal information?

Options:

A.

EU Data Protection Directive

B.

Canada’s PIPEDA

C.

Australia’s ANPP

D.

IT Act of India

Question 15

After the rules were notified under section 43A of the IT (Amendment) Act, 2008, a clarification was issued by the government which exempted the service providers, which get access to/processes Sensitive Personal Data or information (SPDI) under contractual agreement with a legal entity located within or outside India. Which privacy principle provisions notified under Sec 43A were exempted for the service providers?

Options:

A.

Consent

B.

Privacy policy (which is published)

C.

Access and Correction

D.

Disclosure of information

Question 16

Complete the sentence:

The Gramm-Leach-Bliley Act (GLBA) of US regulates the privacy practices adopted by financial institutions, requiring them to provide adequate security of the customer records. It lays various obligations on the financial institutions but allows such financial institutions to share the non-public information of customers (after properly notifying their consumers in a manner mentioned in the Act) with

Options:

A.

Its affiliates only after obtaining explicit consent from the consumers

B.

Its affiliates without need for obtaining explicit consent from the consumers for sharing their data

C.

Its affiliates after disclosure in initial and annual GLBA privacy notices

D.

Its affiliates after obtaining explicit permission of Federal Trade Commission

Question 17

XYZ is a successful startup that acquired a respectable size & scale of operations in last 3 years, handling business process services for small & medium scale enterprises, largely in US & Europe. They are at the stage of closing a deal with a new banking client and working out the details of privacy related obligations in contract. Ensuring effective enforcement of which of the below listed privacy principles is client’s accountability, even after outsourcing its loan approval process to XYZ?

I. Notice

II. Choice and Consent

III. Collection Limitation

IV. Use Limitation

V. Access and Correction

VI. Security

VII. Disclosure to third Party

Please select the correct set of principles from below listed options:

Options:

A.

None of the above, since they are outsourcing the work to XYZ who will carry the liability going forward

B.

All except V and VI

C.

All except III

D.

All of the above listed privacy principles

Question 18

Please select the incorrect statement in context of “Online Privacy”:

Options:

A.

A person’s act of ‘Selective disclosure” (of themselves) in an online environment

B.

A person’s concern over usage of information that were collected during an online activity

C.

A person’s control over collection of information during an online activity

D.

A person’s concern on the software licensing agreement they sign with any organization

Demo: 18 questions
Total 122 questions