IAPP CIPP-C CIPP/C Exam Practice Test Instant Access

Question 1

According to the federal court ruling in the Eastman Case, video cameras in the workplace are considered to be collecting personal information?

AAt the moment a recording occurs.

BWhen a camera is on, even if it is not yet recording.

CAs soon as the data is saved to a workplace server.
D When someone within the nrnani7atinn views the recording

Answer : A

Question 2

An Alberta resident has signed up for a health wellness "app" developed by a British Columbia based software provider that stores the data in British Columbi

a. The application has various non-healthcare related uses. The individual inputs their name and email address in the application to subscribe to health and wellness tips.

The collection and use of the individual's name and email address by the British Columbia based scheduling app would fall under what legislation?

AAlberta's Health Information Act (HIA).

BAlberta's Personal Information Protection Act (PIPA).

CAlberta's Freedom of Information and Protection of Privacy Act (FOIP).

DThe Personal Information Protection and Electronic Documents Act (PIPEDA).

Answer : D

Question 3

A small commercial business in Canada was preparing a mailing to its customers when the letters and the envelopes were mismatched, causing 500 of 1000 letters to be sent to the wrong recipients. The letters contained the name and mailing address of the clients as well as account numbers and account balances.

The business has discovered this error as clients called to report receiving the wrong letter and expressing concern that their information has been breached. Which of the following is the most appropriate next step to take?

AAll 1000 clients must be sent new letters.

BThe 500 clients who were impacted must be immediately notified.

CThe Office of the Privacy Commissioner (OPC) must be immediately notified.

DA risk assessment must be completed to determine the real risk of significant harm (RROSH) to the clients.

Answer : D

Question 4

Oversight authorities allow the following types of consent EXCEPT?

AImplied consent at the time of collection.

BVerbal consent given to the person collecting the information.

CWritten consent included with the information that is collected.

DGeneral consent covering all activities associated with the personal information.

Answer : D

Question 5

Which organization was the primary influence in the development of Canadian privacy with their publication of a set of eight privacy principles?

AThe Organization for Economic Co-operation and Development (OECD).

BThe Canadian Institute of Chartered Accountants

CThe Center for Democracy and Technology (CRT)

DThe Canadian Standards Association (CSA).

Answer : D

Question 6

Of the key principles in the Personal Information Protection and Electronic Documents Act (PIPEDA), which principle in particular contributes to the increase in privacy policies in recent years?

ALimiting Use, Disclosure, and Retention.

BIndividual Access.

COpenness.

DAccuracy

Answer : C

Question 7

In 2007, four employees of TELUS Communications Corporation filed a complaint with the Privacy Commissioner of Canada in connection with the collection of what personal information?

AVoiceprint information.

BDrivers' licenses.

CUrine samples.

DVideo images.

Answer : C

IAPP CIPP-C Certified Information Privacy Professional/ Canada CIPP/C Exam Practice Test