iPass4sure.net

Certification Practice Test | PDF Questions | Actual Questions | Test Engine | Pass4Sure

DCPP-01 : DSCI certified Privacy Professional Exam

DSCI DCPP-01 Questions & Answers

Full Version: 100 Q&A


Latest DCPP-01 Exam Questions and Practice Tests 2024 - Killexams.com

Latest DCPP-01 Practice Tests with Actual Questions


Get Complete pool of questions with Premium PDF and Test Engine


Exam Code : DCPP-01
Exam Name : DSCI certified Privacy Professional
Vendor Name :
"DSCI"







DCPP-01 Dumps DCPP-01 Braindumps

DCPP-01 Real Questions DCPP-01 Practice Test DCPP-01 Actual Questions


killexams.com


DSCI


DCPP-01


DSCI certified Privacy Professional


https://killexams.com/pass4sure/exam-detail/DCPP-01



Question: 85


After the rules were notified under section 43A of the IT (Amendment) Act, 2008, a clarification was issued by the government which exempted the service providers, which get access to/processes Sensitive Personal Data or information (SPDI) under contractual agreement with a legal entity located within or outside India.

Which privacy principle provisions notified under Sec 43A were exempted for the service providers?

  1. Consent

  2. Privacy policy (which is published)

  3. Access and Correction

  4. Disclosure of information




Answer: B



Question: 86


Select the element(s) of APEC cross border privacy rules system from the following list: i. self-assessment ii. compliance review iii. recognition/acceptance by APEC members iv. dispute resolution and enforcement Please select correct option:

  1. i, ii and iii

  2. ii, iii, and iv

  3. i, iii and iv

  4. i, ii, iii and iv




Answer: C



Question: 87


Challenging Compliance’ as a privacy principle is covered in which of the following data protection/ privacy act?

  1. Federal Data Protection Act, Germany

  2. UK Data Protection Act

  3. PIPEDA

  4. Singapore Data Protection Act




Answer: C



Question: 88


Which of the following is not required by an organization in US, resorting to EU-US Safe Harbor provisions, to transfer personal information from EU member nation to US?

  1. Adherence to the seven safe harbor principles

  2. Disclose their privacy policy publicly

  3. Sign standard contractual clauses with data exporters in EU

  4. Notify FTC of the self-certification




Answer: B



Question: 89

Please select the incorrect statement in context of "Online Privacy":

  1. A person’s act of ‘Selective disclosure" (of themselves) in an online environment

  2. A person’s concern over usage of information that were collected during an online activity

  3. A person’s control over collection of information during an online activity

  4. A person’s concern on the software licensing agreement they sign with any organization




Answer: C



Question: 90


Complete the sentence:

The Gramm-Leach-Bliley Act (GLBA) of US regulates the privacy practices adopted by financial institutions, requiring them to provide adequate security of the customer records. It lays various obligations on the financial institutions but allows such financial institutions to share the non-public information of customers (after properly notifying their consumers in a manner mentioned in the Act) with

  1. Its affiliates only after obtaining explicit consent from the consumers

  2. Its affiliates without need for obtaining explicit consent from the consumers for sharing their data

  3. Its affiliates after disclosure in initial and annual GLBA privacy notices

  4. Its affiliates after obtaining explicit permission of Federal Trade Commission




Answer: A



Question: 91


With respect to ‘Data Minimization’ privacy principle, please select the correct statements from the following:

  1. Right to object by the data subject for minimizing the collection of personal information

  2. Data controllers should limit the amount of data collected to what is directly relevant and necessary to accomplish a specified purpose

  3. Data controllers should retain the data only for as long as is necessary to fulfil the purpose for which it was collected

  4. Process of analyzing and minimizing the collected data into useful information




Answer: A



Question: 92


Which of the following privacy principle deals with informed consent of the data subject before sharing the personal information (of the data subject) to third parties for processing?

  1. Collection limitation

  2. Purpose limitation

  3. Disclosure of information

  4. Accountability




Answer: C



Question: 93


For negligence in implementing and maintaining the reasonable security practices and procedures for protecting Sensitive Personal Data or Information (SPDI) as mentioned in Section 43A and associated rules under IT (Amendment) Act, 2008, a corporate entity may be liable to pay compensation of up to

A. Rs. 50,000,000

B. Rs. 500,000,000

C. Rs. 5,000,000

D. Upper limit not defined



Answer: D


Reference: https://shodhganga.inflibnet.ac.in/bitstream/10603/164562/3/chapter%20ii.pdf


Question: 94


With reference to APEC privacy framework, when personal information is to be transferred to another person or organization, whether domestically or internationally, "the should obtain the consent of the individual and exercise due diligence and take reasonable steps to ensure that the recipient person or organization will protect the information consistently with APEC information privacy principles".

  1. Personal Information Owner

  2. Personal Information Controller

  3. Personal Information Processor

  4. Personal Information Auditor




Answer: B


Reference: https://iapp.org/news/a/gdpr-matchup-the-apec-privacy-framework-and-cross-border-privacy-rules/


Question: 95


From the below listed options, identify the new privacy principle that is being advocated in proposed EU General Data Protection Regulation?

  1. Right to be informed prior to sharing of data

  2. Right to modify data

  3. Right to be forgotten

  4. Right to object data collection and processing




Answer: C



Question: 96


Which of the following statements are true about the privacy statement of an organization?

  1. Content of the online privacy statement of an organization will depend upon the applicable laws, and may need to address requirements across geographical boundaries and legal jurisdictions

  2. As per privacy laws generally it is mandatory to mention the phone contact details of the owner of organization in the online privacy statement where customers can reach out in case of a grievance or incident

  3. Online privacy statement is an instrument to demonstrate to stakeholders how the organization gathers, uses, discloses, and manages personal data

  4. India’s Information Technology (Amendment) Act, 2008 does not require that privacy policy be published on the website




Answer: A


Reference: https://en.wikipedia.org/wiki/Privacy_policy


Question: 97


A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.

Which of the following are not mandatory pre-requisite before transferring sensitive personal data to its Asian branches?

  1. Notifying the data subject

  2. Conducting risk assessment for the processing involved

  3. Determining adequacy status of the country

  4. Self-certifying to Safe Harbor practices and reporting to Federal Trade Commission



Answer: D



Question: 98


A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.

For exporting EU branch employees’ data to Asian Countries for processing, which of the following instruments could be used for legal data transfer?

  1. Customized contracts mandating ISO 27001 certification by the data processor

  2. Standard Contractual Clauses

  3. Binding Corporate Rules

  4. Privacy Shield Framework




Answer: D



Question: 99


A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.

For the outsourced work of its customers’ data processing, in order to initiate data transfer to another organizations outside EU, which is the most appropriate among the following?

  1. The vendor (data importer) in the third country, and not the exporter is responsible to put in place suitable model contractual clauses, and hence the exporter does not need to take any action.

  2. Since the data is processed by the vendor outside the EU, the EU directive does not apply and hence there are no legal concerns

  3. The data exporter needs to initiate model contractual clauses after obtaining approvals from data protection commissioner and have the vendor be a signatory on the same as data importer

  4. The data importer need to notify about the transfer to data protection commissioner in the destination country and exporter need to similarly notify in the EU country of origin




Answer: D



Question: 100


APEC privacy framework envisages common principles such as Notice, Collection limitation, Use Limitation, Access and Correction, Security/Safeguards, and Accountability. But it differs from the EU Data Protection Directive in which of the below aspect?

  1. APEC privacy framework does not deal with the usage of personal information

  2. APEC privacy framework does not mandate the binding treaties or directives for member countries

  3. APEC privacy framework does not have a provision for co-operation between privacy enforcement agencies of members

  4. APEC privacy framework does not deal with e-commerce




Answer: B


User: Marion*****

Passing the dcpp-01 exams became effortless for me, thanks to the useful website that provided me with thorough explanations for all the questions. I found the Questions and Answers from killexams.com to be very helpful in my preparation for the exam. When the exam was less than a week away, I was worried about my preparation and planned to retake the exam if I got less than 80% marks. However, after following a friend advice, I purchased the Questions and Answers from killexams.com, which helped me prepare through well-composed material, and I passed with flying colors, scoring 90%.
User: Mikhail*****

If you want to change your destiny and ensure that happiness is part of your future, you must work hard. It was my destiny to find Killexams during my exams because it led me towards my destiny. My fate was getting accurate grades, and Killexams and its teachers made it possible through their exceptional coaching. Thanks to their material, I could not possibly fail the DCPP-01 exam.
User: Talya*****

I highly recommend the questions and answers provided by killexams.com to everyone preparing for the DCPP-01 exam. The material is incredibly helpful in getting an idea of the types of questions that will appear on the exam and where to focus your studies. The practice tests provided were also excellent for gauging my readiness for the actual exam. The answer keys were particularly helpful in reinforcing what I had learned, and the explanations provided were easy to understand and added value to my understanding of the subject matter.
User: Earl*****

As an honors student, I never thought I would be using brain practice tests for advanced IT exams. However, as my career progressed and my obligations increased, finding time and money to prepare for exams became increasingly difficult. Thats when I ordered the killexams.com bundle. I passed the dcpp-01 exam with flying colors, and the best part is, the statistics I learned from the exam are still with me. The questions and answers format of killexams.com is truly remarkable, and it helped me feel more confident and knowledgeable in my field.
User: Irene*****

Passing the DCPP-01 partner exam was a breeze thanks to the preparation materials provided by Killexams.com. There was no anxiety or stress, and I felt confident and well-prepared. The Questions and Answers package was a great resource, and the money-back guarantee is proof of its effectiveness.

Features of iPass4sure DCPP-01 Exam

  • Files: PDF / Test Engine
  • Premium Access
  • Online Test Engine
  • Instant download Access
  • Comprehensive Q&A
  • Success Rate
  • Real Questions
  • Updated Regularly
  • Portable Files
  • Unlimited Download
  • 100% Secured
  • Confidentiality: 100%
  • Success Guarantee: 100%
  • Any Hidden Cost: $0.00
  • Auto Recharge: No
  • Updates Intimation: by Email
  • Technical Support: Free
  • PDF Compatibility: Windows, Android, iOS, Linux
  • Test Engine Compatibility: Mac / Windows / Android / iOS / Linux

Premium PDF with 100 Q&A

Get Full Version

All DSCI Exams

DSCI Exams

Certification and Entry Test Exams

Complete exam list