DSCI DCPP-01 Exam Practice Test Instant Access

Question 1

According to IT (Amendment) Act,2008, who should designate a grievance officer to redress grievance(s) of provider of information?

AData processor

BThird party agency collecting personal information

CBody corporate, which determines the means and purpose of data processing

DNatural person sharing his/her information

Answer : B

Question 2

What are the roles an organization can play from privacy perspective?

i. Data Controller -- determines the means and purpose of processing of data which is collected from its end customers

ii. Data Controller -- determines the means and purpose of processing of data which is collected from its employees

iii. Data Sub-Processor -- processes personal data on behalf of data processor

iv. Joint Controller -- determines the means and purpose of data processing along with other data controller

Please select correct option:

Ai, ii and iii

Bii, iii and iv

Ci, iii and iv

Di, ii, iii and iv

Answer : A

Question 3

In India, who among the following would be the authorized legal entities to monitor and intercept communication of individuals?

A''Intermediaries'' as defined under the IT (Amendment) Act, 2008

BTelecom Service Providers

CIntelligence and Law Enforcement Agencies

DDirectorate of Revenue Intelligence (DRI)

Answer : C

Section 69 - Power to issue directions for interception or monitoring or decryption of any information through any computer resource.--(1) Where the Central Government or a State Government or any of its officers specially authorised by the Central Government or the State Government, as the case may be, in this behalf may, if satisfied that it is necessary or expedient so to do, in the interest of the sovereignty or integrity of India, defence of India, security of the State, friendly relations with foreign States or public order or for preventing incitement to the commission of any cognizable offence relating to above or for investigation of any offence, it may subject to the provisions of sub-section (2), for reasons to be recorded in writing, by order, direct any agency of the appropriate Government to intercept, monitor or decrypt or cause to be intercepted or monitored or decrypted any information generated, transmitted, received or stored in any computer resource.

Question 4

Which of the following privacy legislations is synonymous with "Data Handlers"?

AFederal Data Protection Act, Germany (BDSG)

BSouth Korea's Personal Information Protection Act

CDigital Privacy Act, 2015

DChild online protection Act, 1998

Answer : B

Question 5

Which of the following laid foundation for the development of OECD privacy principles for the promotion of free international trade and trans border data flows?

AFair information Privacy Practices of US, 1974

BEU Data Protection Directive

CSafe Harbor Framework

DWTO's Free Trade Agreement

Answer : B

Question 6

Which of the following statements are true about the privacy statement of an organization?

AContent of the online privacy statement of an organization will depend upon the applicable laws, and may need to address requirements across geographical boundaries and legal jurisdictions

BAs per privacy laws generally it is mandatory to mention the phone contact details of the owner of organization in the online privacy statement where customers can reach out in case of a grievance or incident

COnline privacy statement is an instrument to demonstrate to stakeholders how the organization gathers, uses, discloses, and manages personal data

DIndia's Information Technology (Amendment) Act, 2008 does not require that privacy policy be published on the website

Answer : A

Question 7

Which of the following privacy regulation advocates de-identification of personal information?

AEU Data Protection Directive

BCanada's PIPEDA

CAustralia's ANPP

DIT Act of India

Answer : A

DSCI Certified Privacy Professional DCPP-01 Exam Practice Test