DSCI DCPP-01 Exam Practice Test Instant Access

Question 1

According to RTI Act, under which conditions can a government department refuse to release information?

ANational security adversely affected by such information

BThis information is detrimental to the stability of the ruling party in government

CDetrimental effect on the public image of government agencies

DIn the absence of a public interest, such information may adversely impact the privacy of its officials

Answer : A, D

Question 2

Choose from the options below to group privacy principles into user centric (requiring people's involvement) and organization centric (restricted to processes within the organization) categories:

AUser Centric: Choice, Collection Limitation, Access and Correction Organization Centric: Notice, Use Limitation, Security, Disclosure to third party, Accountability

BUser Centric: Notice, Consent, Collection Limitation, Access and Correction Organization Centric: Choice, Use Limitation, Security, Disclosure to third party, Openness, Accountability

CUser Centric: Notice, Openness, Accountability Organization Centric: Consent, Choice, Collection Limitation, Use Limitation, Security, Disclosure to third party, Access & Correction

DUser Centric: Notice, Consent, Choice, Access & Correction Organization Centric: Consent, Collection Limitation, Use Limitation, Security, Disclosure to third party, Openness, Accountability

Answer : B

Page No 36 of PBok At a high level, Privacy Principles can be grouped into the following two categories: Principles that advocate user engagement: Principles such as Notice, Consent, Collection Limitation, Access & Correction etc. are user centric principles and involve user transactions. Principles that are aligned to organizational context: Principles such as Purpose Limitation, Accountability, Disclosure, Security/Safeguard etc. talk about the norms and organizational measures for ensuring privacy protection by the organization.

Question 3

According to which of the following data privacy laws does "challenging compliance" fall under?

APIPEDA

BFederal Data Protection Act

CUK Data Protection Act

DAPEC Framework

Answer : A

Question 4

A financial organization may share nonpublic information about its customers in accordance with Gramm-Leach-Bliley Act of the US. Which one of the following is the requirement?

AData sharing does not require consent from the consumers.

BAs soon as the GLBA privacy notice is disclosed initially and annually

CFTC permission is required

DConsumers' consent must be obtained first

Answer : D

Question 5

Under the OECD Privacy Guidelines, 1980, which of the following was not a privacy principle?

APurpose Specification

BSecurity Safeguard

COpenness

DData minimization

Answer : D

Question 6

De-identification of personal information is advocated by which of the following privacy regulations?

AIT Act of India

BAustralia's ANPP

CEU Data Protection Directive

DCanada's PIPEDA

Answer : B

Question 7

When you're based in the EU and willing to share data outside the EU/EEA, then you can use model contracts. In reference to the above statement, which of the following is true?

ADirective on EU e-commerce mentions it as a requirement

BEU Data Protection Directive states that it is a requirement

COECD's Privacy Framework mentions it as a requirement

DNeither of the above

Answer : B

DSCI DCPP-01 DSCI Certified Privacy Professional Exam Practice Test