- All Exams Instant Download
To determine the steps to follow, what would be the most appropriate internal guide for Ben to review?
SCENARIO Please use the following to answer the next QUESTION: Ben works in the IT department of IgNight, Inc., a company that designs lighting solutions for its clients. Although IgNight's customer base consists primarily of offices in the US, some individuals have been so impressed by the unique aesthetic and...
Which action should the company take IMMEDIATELY?
A Human Resources director at a company reported that a laptop containing employee payroll data was lost on the train. Which action should the company take IMMEDIATELY?A . Report the theft to law enforcement B. Wipe the hard drive remotely C. Report the theft to the senior management D. Perform...
Penny’s colleague in Marketing is excited by the new sales and the company’s plans, but is also concerned that Penny may curtail some of the growth opportunities he has planned. He tells her “I heard someone in the breakroom talking about some new privacy laws but I really don’t think it affects us. We’re just a small company. I mean we just sell accessories online, so what’s the real risk?
SCENARIO Please use the following to answer the next QUESTION: Penny has recently joined Ace Space, a company that sells homeware accessories online, as its new privacy officer. The company is based in California but thanks to some great publicity from a social media influencer last year, the company has...
When devising effective employee policies to address a particular issue, which of the following should be included in the first draft?
When devising effective employee policies to address a particular issue, which of the following should be included in the first draft?A . Rationale for the policy. B. Points of contact for the employee. C. Roles and responsibilities of the different groups of individuals. D. Explanation of how the policy is...
Which is the best first step in understanding the data security practices of a potential vendor?
SCENARIO Please use the following to answer the next QUESTION: Edufox has hosted an annual convention of users of its famous e-learning software platform, and over time, it has become a grand event. It fills one of the large downtown conference hotels and overflows into the others, with several thousand...
What does it mean to “rationalize” data protection requirements?
What does it mean to “rationalize” data protection requirements?A . Evaluate the costs and risks of applicable laws and regulations and address those that have the greatest penalties B. Look for overlaps in laws and regulations from which a common solution can be developed C. Determine where laws and regulations...
What is a logical next step to help ensure a high level of protection?
SCENARIO Please use the following to answer the next QUESTION: As they company’s new chief executive officer, Thomas Goddard wants to be known as a leader in data protection. Goddard recently served as the chief financial officer of Hoopy.com, a pioneer in online video viewing with millions of users around...
What organizational approach would make complying with a number of different regulations easier?
Formosa International operates in 20 different countries including the United States and France. What organizational approach would make complying with a number of different regulations easier?A . Data mapping. B. Fair Information Practices. C. Rationalizing requirements. D. Decentralized privacy management.View AnswerAnswer: B
How would you most effectively execute this responsibility?
As a Data Protection Officer, one of your roles entails monitoring changes in laws and regulations and updating policies accordingly. How would you most effectively execute this responsibility?A . Consult an external lawyer. B. Regularly engage regulators. C. Attend workshops and interact with other professionals. D. Subscribe to email list-serves...
What is the main purpose of a privacy program audit?
What is the main purpose of a privacy program audit?A . To mitigate the effects of a privacy breach. B. To justify a privacy department budget increase. C. To make decisions on privacy staff roles and responsibilities. D. To ensure the adequacy of data protection procedures.View AnswerAnswer: D
