CIPT exam

Organizations understand there are aggregation risks associated with the way the process their customer’s data. They typically include the details of this aggregation risk in a privacy notice and ask that all customers acknowledge they understand these risks and consent to the processing. What type of risk response does this...

SCENARIO Please use the following to answer the next questions: Your company is launching a new track and trace health app during the outbreak of a virus pandemic in the US. The developers claim the app is based on privacy by design because personal data collected was considered to ensure...

SCENARIO Wesley Energy has finally made its move, acquiring the venerable oil and gas exploration firm Lancelot from its long-time owner David Wilson. As a member of the transition team, you have come to realize that Wilson's quirky nature affected even Lancelot's data practices, which are maddeningly inconsistent. “The old...

What is the main benefit of using dummy data during software testing?A . The data comes in a format convenient for testing. B. Statistical disclosure controls are applied to the data. C. The data enables the suppression of particular values in a set. D. Developers do not need special privacy...

SCENARIO Looking back at your first two years as the Director of Personal Information Protection and Compliance for the Berry Country Regional Medical Center in Thorn Bay, Ontario, Canada, you see a parade of accomplishments, from developing state-of-the-art simulation based training for employees on privacy protection to establishing an interactive...

Which of the following best describes the basic concept of "Privacy by Design?"A . The adoption of privacy enhancing technologies. B. The integration of a privacy program with all lines of business. C. The implementation of privacy protection through system architecture. D. The introduction of business process to identify and...

How should the sharing of information within an organization be documented?A . With a binding contract. B. With a data flow diagram. C. With a disclosure statement. D. With a memorandum of agreement.View AnswerAnswer: C

What risk is mitigated when routing video traffic through a company’s application servers, rather than sending the video traffic directly from one user to another?A . The user is protected against phishing attacks. B. The user’s identity is protected from the other user. C. The user’s approximate physical location is...

An organization is concerned that its aging IT infrastructure will lead to Increased security and privacy risks. Which of the following would help mitigate these risks?A . Vulnerability management. B. Data Loss Prevention. C. Code audits. D. Network Centricity.View AnswerAnswer: A Explanation: vulnerability management would help mitigate the risks of...

SCENARIO Please use the following to answer the next questions: Your company is launching a new track and trace health app during the outbreak of a virus pandemic in the US. The developers claim the app is based on privacy by design because personal data collected was considered to ensure...