What is the essence of the principle ‘Full Lifecycle Protection’?
What is the essence of the principle ‘Full Lifecycle Protection’?A . Delivering the maximum degree of data protection by default, ensuring that personal data are automatically protected in any given IT system or business practice.B . Ensuring that whatever business practice or technology is involved, processing is done according to...
Which organizations need to comply with the General Data Protection Regulation (GDPR)?
Which organizations need to comply with the General Data Protection Regulation (GDPR)?A . Only organizations that have employees in the European Union (EU).B . Only organizations that have their headquarters in the European Union (EU).C . All organizations anywhere in the world.D . All organizations located in the European Union...
What is the meaning of “proportionality” in this context?
The General Data Protection Regulation (GDPR) is based on the principles of proportionality and subsidiarity. What is the meaning of “proportionality” in this context?A . Personal data can be processed according to the use of requirements.B . Personal data cannot be reused without explicit and informed consent.C . Personal data...
Which cause is a data breach according to the GDPR?
Which cause is a data breach according to the GDPR?A . illegally obtained corporate data from a human resources management systemB . Personal data is processed without a binding contract.C . Personal data is processed by anyone other than the controller, processor or, possibly, subprocessorD . The operation of a...
What is the objective of data portability?
The General Data Protection Regulation (GDPR) formalizes the data subject’s right to data portability. What is the objective of data portability?A . The controller has the right to move the data subject’s personal data from one organization to another.B . The data subject has the right to move personal data...
Which organizations need to comply with the General Data Protection Regulation (GDPR)?
Which organizations need to comply with the General Data Protection Regulation (GDPR)?A . Only organizations that have employees in the European Union (EU).B . Only organizations that have their headquarters in the European Union (EU).C . All organizations anywhere in the world.D . All organizations located in the European Union...
What is the maximum penalty for non-compliance with this notification obligation?
According to Article.33 of the GDPR the controller shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the personal data breach to the supervisory authority. What is the maximum penalty for non-compliance with this notification obligation?A . 10.000.000 or 2%...
The General Data Protection Regulation (GDPR) came into effect on May 25, 2018, what is the legal status of this regulation?
The General Data Protection Regulation (GDPR) came into effect on May 25, 2018, what is the legal status of this regulation?A . The GDPR is a functional law in all EU member states and Member States cannot rectify it.B . The GDPR is only a recommendation. Member States should create...
Under what EU legislation is data transfer between the EEA and the U.S.A. allowed?
Under what EU legislation is data transfer between the EEA and the U.S.A. allowed? A. An adequacy decision based on the Privacy Shield program B. An adequacy decision by reason of US domestic legislation C. The Transatlantic Trade an Investment Partnership (TTIP) D. The U.S.A.’s commitment to join the European...
What should be done by the EU member states and is not a responsibility of the supervisory authorities?
What should be done by the EU member states and is not a responsibility of the supervisory authorities?A . Impose administrative fines to controllersB . Make rules for penalizing other GDPR infringementsC . Order the controller to notify the data subject about a breachD . Receive and process data breach...