Download DSCI certified Privacy Professional.DCPP-01.ExamTopics.2026-07-18.34q.vcex

Vendor: DSCI
Exam Code: DCPP-01
Exam Name: DSCI certified Privacy Professional
Date: Jul 18, 2026
File Size: 146 KB

How to open VCEX files?

Files with VCEX extension can be opened by ProfExam Simulator.

Demo Questions

Question 1
APEC privacy framework envisages common principles such as Notice, Collection limitation, Use Limitation, Access and Correction, Security/Safeguards, and Accountability. But it differs from the EU Data Protection Directive in which of the below aspect?
  1. APEC privacy framework does not deal with the usage of personal information
  2. APEC privacy framework does not mandate the binding treaties or directives for member countries
  3. APEC privacy framework does not have a provision for co-operation between privacy enforcement agencies of members
  4. APEC privacy framework does not deal with e-commerce
Correct answer: B
Question 2
A multinational company with operations in several parts within EU and outside EU, involves international data transfer of both its employees and customers. In some of its EU branches, which are relatively larger in size, the organization has a works council. Most of the data transferred is personal, and some of the data that the organization collects is sensitive in nature, the processing of some of which is also outsourced to its branches in Asian countries.
Which of the following are not mandatory pre-requisite before transferring sensitive personal data to its Asian branches?
  1. Notifying the data subject
  2. Conducting risk assessment for the processing involved
  3. Determining adequacy status of the country
  4. Self-certifying to Safe Harbor practices and reporting to Federal Trade Commission
Correct answer: D
Question 3
Data processing includes which of the following operations:
  1. Collecting
  2. Transmitting
  3. Storing
  4. Disclosing
  5. All of the above
Correct answer: C
Question 4
Section 43A of the Information Technology (Amendment) Act, 2008 holds ___________ accountable for having reasonable security practices and procedures in place to protection sensitive personal data.
  1. Government
  2. Body Corporates
  3. Government and body corporates alike
  4. none of the above
Correct answer: A
Question 5
What is not a best practice for maintaining privacy while sharing any personal information on social networking?
  1. Share it among a closed group
  2. Publishing on need basis
  3. Classify it private/secret while sharing
  4. Make it public to increase transparency
Correct answer: B
Question 6
Rashmi recently started working as a customer care representative for a bank. After receiving a customer complaint over the phone, she wrote an email to send to grievance department in the bank. The email included customer's full name, bank account number, residential address, email address and contact number. She picked 2-3 resources/employees from the intranet site of the bank, which belonged to the grievance department and sent the email.
Please select the most ideal scenario from a privacy point of view?
  1. Rashmi should have included some of the customer information in the email and send to grievance team.
  2. Rashmi did the right thing by sharing all customer details to parties identified from company intranet.
  3. Rashmi should have ascertained who in the grievance team is/are authorized to handle the complaint request and only then should have sent the customer details to the concerned person(s).
  4. none of the above
Correct answer: A
Question 7
In the landmark case _____________________ the Honourable Supreme Court of India reaffirmed the status of Right to Privacy as a Fundamental Right under Part III of the constitution.
  1. M. P. Sharma and others vs. Satish Chandra, District Magistrate, Delhi, and others
  2. Maneka Gandhi vs. Union of India
  3. Justice K. S. Puttaswamy (Retd.) and Anr. vs. Union of India And Ors
  4. Olga Tellis vs. Bombay Municipal Corporation
Correct answer: A
Question 8
An Indian bank plans to improve the authentication mechanism for its banking system by implementing three factor authentication, in which one of the factors is biometric. Which of the following statement is not correct?
  1. Section 43A of IT (Amendment) Act, 2008 will be applicable.
  2. Privacy policy of the bank might need to be revised.
  3. Authorization to be taken from IT Secretary of the respective state or union territory.
  4. Consent for biometric processing needs to be taken from the data subject if not already taken.
Correct answer: B
Question 9
The Information Technology (Reasonable Security Practices And Procedures and Sensitive Data or Information) Rules, 2011, provide the consumer with which of the following rights?
  1. Right to Access and Correction
  2. Right to Erasure
  3. Right to Data Portability
  4. Right to restrict processing
  5. All of the above
Correct answer: C
Question 10
Data Protection Impact Assessment requirement, under GDPR is triggered if the organization is engaged in which of the following activities?
  1. Processing on a large scale of special categories of data
  2. Processing of personal data relating to criminal convictions and offenses
  3. Systematic monitoring of a publicly accessible on a large scale
  4. All the above
Correct answer: D
Question 11
Which of the following laid foundation for the development of OECD privacy principles for the promotion of free international trade and trans border data flows?
  1. Fair information Privacy Practices of US, 1974
  2. EU Data Protection Directive
  3. Safe Harbor Framework
  4. WTO’s Free Trade Agreement
Correct answer: B
HOW TO OPEN VCE FILES

Use VCE Exam Simulator to open VCE files
Avanaset

HOW TO OPEN VCEX FILES

Use ProfExam Simulator to open VCEX files
ProfExam Screen

ProfExam
ProfExam at a 20% markdown

You have the opportunity to purchase ProfExam at a 20% reduced price

Get Now!