Which of the following options describes the concept of data minimization?
Which of the following options describes the concept of data minimization?A . It is the minimization of data storage locations.B . It is the decrease in the space allocated for data storage.C . It is the limitation of data to the purposes for which it is treated.D . It is...
What is the definition of privacy related to the General Data protection Regulation (GDPR)?
What is the definition of privacy related to the General Data protection Regulation (GDPR)?A . A situation in which one is not observed or distributed by the government or uninvited people.B . The right to respect for a person’s private and family life, his home and his correspondence.C . The...
Which of the following types of transfers of personal data outside the European Economic Area (EEA) is allowed?
Which of the following types of transfers of personal data outside the European Economic Area (EEA) is allowed?A . Transfer between country governments.B . Transfers subject to the law of the countries involved.C . Transfers conducted through Standard Contractual Clauses.D . Transfers conducted under Compulsory Corporate Rules.View AnswerAnswer: D Explanation:...
What is a responsibility of Supervisory Authorities in EEA countries?
What is a responsibility of Supervisory Authorities in EEA countries?A . Research on security breaches of corporate informationB . Supervision of all data processing operations controlled by a controller in an EEA countryC . Supervision of all data processing operations where the data subjects are residents of an EEA countryView...
According to the GDPR, what does not have to be covered in the written contract?
A written contract between a controller and a processor is called a data processing agreement. According to the GDPR, what does not have to be covered in the written contract?A . The contractor code of business ethics and conduct that is used.B . Which data are covered by the data...
How are the terms privacy and data protection related?
How are the terms privacy and data protection related?A . Data protection is the right to privacy.B . The terms are synonymous.C . Privacy includes the right to the protection of personal data.View AnswerAnswer: C
What principle is this?
GDPR quotes in one of its principles that personal data should be adequate, relevant and limited to what is necessary in relation to its purpose. What principle is this?A . integrity and confidentialityB . purpose limitationC . data minimizationD . lawfulness, loyalty and transparencyView AnswerAnswer: C Explanation: In its Article...
Which term in the GDPR is defined here?
“The controller shall implement appropriate technical and organizational measures for ensuring that (…) only personal data which are necessary for each specific purpose of the processing are processed.” Which term in the GDPR is defined here?A . ComplianceB . Data protection by default and by designC . Embedded data protectionView...
How should the processor act on this situation and what should the controller do, if anything?
A processor is instructed to report on customers who bought a product both last month and at least once in the three months before that. Unfortunately, the processor makes a mistake and uses personal data collected by another controller for a different purpose. The mistake is found before the report...
What kind of a data breach is this?
While paying with a credit card, the card is skimmed (i.e. the data on the magnetic strip is stolen). The magnetic strip contains the account number, expiration date, cardholder’s name and address, PIN number and more. What kind of a data breach is this?A . MaterialB . Non-materialC . VerbalView...