Download DSCI certified Privacy Professional.DCPP-01.BrainDumps.2019-05-31.33q.tqb
| Vendor: | DSCI |
| Exam Code: | DCPP-01 |
| Exam Name: | DSCI certified Privacy Professional |
| Date: | May 31, 2019 |
| File Size: | 123 KB |
How to open VCEX files?
Files with VCEX extension can be opened by ProfExam Simulator.
Discount: 20%
Demo Questions
Question 1
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
Which of the following are not mandatory pre-requisite before transferring sensitive personal data to its Asian branches?
- Notifying the data subject
- Conducting risk assessment for the processing involved
- Determining adequacy status of the country
- Self-certifying to Safe Harbor practices and reporting to Federal Trade Commission
Correct answer: D
Question 2
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
For the outsourced work of its customers’ data processing, in order to initiate data transfer to another organizations outside EU, which is the most appropriate among the following?
- The vendor (data importer) in the third country, and not the exporter is responsible to put in place suitable model contractual clauses, and hence the exporter does not need to take any action.
- Since the data is processed by the vendor outside the EU, the EU directive does not apply and hence there are no legal concerns
- The data exporter needs to initiate model contractual clauses after obtaining approvals from data protection commissioner and have the vendor be a signatory on the same as data importer
- The data importer need to notify about the transfer to data protection commissioner in the destination country and exporter need to similarly notify in the EU country of origin
Correct answer: D
Question 3
Which of the following statements are true about the privacy statement of an organization?
- Content of the online privacy statement of an organization will depend upon the applicable laws, and may need to address requirements across geographical boundaries and legal jurisdictions
- As per privacy laws generally it is mandatory to mention the phone contact details of the owner of organization in the online privacy statement where customers can reach out in case of a grievance or incident
- Online privacy statement is an instrument to demonstrate to stakeholders how the organization gathers, uses, discloses, and manages personal data
- India’s Information Technology (Amendment) Act, 2008 does not require that privacy policy be published on the website
Correct answer: A
Explanation:
Reference: https://en.wikipedia.org/wiki/Privacy_policy Reference: https://en.wikipedia.org/wiki/Privacy_policy
HOW TO OPEN VCE FILES
Use VCE Exam Simulator to open VCE files
HOW TO OPEN VCEX AND EXAM FILES
Use ProfExam Simulator to open VCEX and EXAM files
ProfExam at a 20% markdown
You have the opportunity to purchase ProfExam at a 20% reduced price
Get Now!