Download EXIN Privacy and Data Protection Foundation.PDPF.Pass4Sure.2020-04-22.89q.tqb
| Vendor: | Exin |
| Exam Code: | PDPF |
| Exam Name: | EXIN Privacy and Data Protection Foundation |
| Date: | Apr 22, 2020 |
| File Size: | 423 KB |
How to open VCEX files?
Files with VCEX extension can be opened by ProfExam Simulator.
Discount: 20%
Demo Questions
Question 1
What is the essence of the principle ‘Full Lifecycle Protection’?
- Delivering the maximum degree of data protection by default, ensuring that personal data are automatically protected in any given IT system or business practice.
- Ensuring that whatever business practice or technology is involved, processing is done according to the stated objectives, subject to independent verification.
- Embedding security measures to protect the data from the moment it is collected, throughout processing until it is destroyed at the end of the process.
- Prioritizing the protection of the interests of the individual by offering for example strong privacy defaults, appropriate notice or empowering user-friendly options.
Correct answer: C
Question 2
A processor is instructed to report on customers who bought a product both last month and at least once in the three months before that. Unfortunately, the processor makes a mistake and uses personal data collected by another controller for a different purpose.
The mistake is found before the report is created, and nobody has access to personal date he or she should not have had access to.
How should the processor act on this situation and what should the controller do, if anything?
- The processor must notify the controller and the controller must notify the Data Protection Authority of a data breach.
- The processor must notify the controller of a data breach. The controller must assess the possible risk to the data subjects.
- The processor must notify the Data Protection Authority of a data breach. The controller must execute a PIA to assess the risk to data subjects.
- The processor must restart processing using the right data. There is no need for the controller to act.
Correct answer: B
Question 3
The Supervisory Authority is notified whenever an organization intends to process personal data, except for some specific situations. The Supervisory Authority keeps a publicly accessible register of these data processing operations.
What else is a legal obligation of the Supervisory Authority in reaction to such a notification?
- To assess compliance with the law in all classes where sensitive personal data is processed
- To assess the legitimacy of operations that involve specific risks for the data subjects
- To assess the legitimacy of binding contract(s) between the controller and the data processor(s)
- To give out a license for the data processing, specifying the types of personal data which are allowed
Correct answer: A
HOW TO OPEN VCE FILES
Use VCE Exam Simulator to open VCE files
HOW TO OPEN VCEX AND EXAM FILES
Use ProfExam Simulator to open VCEX and EXAM files
ProfExam at a 20% markdown
You have the opportunity to purchase ProfExam at a 20% reduced price
Get Now!