DSCI DCPP-01 Exam Practice Test Instant Access

Question 1

Which of the following privacy legislations is synonymous with "Data Handlers"?

AFederal Data Protection Act, Germany (BDSG)

BSouth Korea's Personal Information Protection Act

CDigital Privacy Act, 2015

DChild online protection Act, 1998

Answer : B

Question 2

Which of the following instruments can be used for a legal data transfer when a company in the EU wishes to transfer data to Asian countries?

AFramework for the Privacy Shield

BStandard Contractual Clauses

CData processors must be certified by ISO 27001 under customized contracts

DBinding Corporate Rules

Answer : B, D

Question 3

According to the privacy statement of an organization, which of the following words is true?

AThe Information Technology (Amendment) Act, 2008 does not require the publication of privacy policies on websites in India

BThe content of an organization's online privacy statement will be influenced by the applicable laws, and may need to address requirements across geographic boundaries and legal jurisdictions

CA privacy statement demonstrates to stakeholders how an organization gathers, uses, discloses, and manages personal information

DIn order to follow privacy laws, it is mandatory that there is a phone contact information for the organization's owner in the online privacy statement so that customers can reach out in case of a concern or incident, which can be managed online

Answer : B

Question 4

How soon after becoming aware of the breach the data controller has to notify the supervisory authority under Article 33 of GDPR.

A17 hours

B24 hours

C36 hours

D72 hours

Answer : D

Question 5

Which law does not require notification of personal data breaches?

AJapanese Act on the Protection of Personal Information

BUK Data Protection Act, 2018

CGeneral Data Protection Regulation, 2016

DInformation Technology (Amendment) Act, 2008

Answer : D

Question 6

A team created by the Indian government has been assigned to create India's privacy law based on Justice AP Shah's recommendations. Is any of the following legislation necessary?

ANational privacy principles

BAn official national data controller registry should be created

CPenalties, remedies, and offenses

DA right to privacy that is explicitly enshrined in the constitution

Answer : A

Question 7

According to the EU-US Safe Harbour Framework, which of the following is not required when transferring personal information from EU member nations to the US?

AContracts with EU data exporters should include standard contractual clauses

BSafe harbor principles must be followed

BThe self-certification process with the Federal Trade Commission

DPrivacy information publicly disclosed

Answer : A

DSCI DCPP-01 DSCI Certified Privacy Professional Exam Practice Test