- All Exams Instant Download
Which of the following actions should the privacy officer take first?
An organization's privacy officer was just notified by the benefits manager that she accidentally sent out the retirement enrollment report of all employees to a wrong vendor. Which of the following actions should the privacy officer take first?A . Perform a risk of harm analysis.B . Report the incident to...
“Collection”, “access” and “destruction” are aspects of what privacy management process?
“Collection”, “access” and “destruction” are aspects of what privacy management process?A . The data governance strategyB . The breach response planC . The metric life cycleD . The business caseView AnswerAnswer: A
What should a privacy professional keep in mind when selecting which metrics to collect?
What should a privacy professional keep in mind when selecting which metrics to collect?A . Metrics should be reported to the public.B . The number of metrics should be limited at first.C . Metrics should reveal strategies for increasing company earnings.D . A variety of metrics should be collected before...
What would best help accomplish this goal?
SCENARIO Please use the following to answer the next QUESTION: As they company’s new chief executive officer, Thomas Goddard wants to be known as a leader in data protection. Goddard recently served as the chief financial officer of Hoopy.com, a pioneer in online video viewing with millions of users around...
Which term describes a piece of personal data that alone may not identify an individual?
Which term describes a piece of personal data that alone may not identify an individual?A . Unbundled dataB . A singularityC . Non-aggregated infopointD . A single attributeView AnswerAnswer: A
Going forward, what is the best way for IgNight to prepare its IT team to manage these kind of security events?
SCENARIO Please use the following to answer the next QUESTION: Ben works in the IT department of IgNight, Inc., a company that designs lighting solutions for its clients. Although IgNight's customer base consists primarily of offices in the US, some individuals have been so impressed by the unique aesthetic and...
From a business standpoint, what is the most productive way to view employee use of personal equipment for work-related tasks?
SCENARIO Please use the following to answer the next QUESTION: It's just what you were afraid of. Without consulting you, the information technology director at your organization launched a new initiative to encourage employees to use personal devices for conducting business. The initiative made purchasing a new, high-specification laptop computer...
To improve the facility's system of data security, Anton should consider following through with the plan for which of the following?
SCENARIO Please use the following to answer the next QUESTION: Henry Home Furnishings has built high-end furniture for nearly forty years. However, the new owner, Anton, has found some degree of disorganization after touring the company headquarters. His uncle Henry had always focused on production C not data processing C...
Under the General Data Protection Regulation (GDPR), which of the following situations would LEAST likely require a controller to notify a data subject?
Under the General Data Protection Regulation (GDPR), which of the following situations would LEAST likely require a controller to notify a data subject?A . An encrypted USB key with sensitive personal data is stolenB . A direct marketing email is sent with recipients visible in the ‘cc’ fieldC . Personal...
What is the best way to prevent the Finnish vendor from transferring data to another party?
SCENARIO Please use the following to answer the next QUESTION: Your organization, the Chicago (U.S.)-based Society for Urban Greenspace, has used the same vendor to operate all aspects of an online store for several years. As a small nonprofit, the Society cannot afford the higher-priced options, but you have been...
