When hiring a data processor, which action would a data controller NOT be able to depend upon to avoid liability in the event of a security breach?
When hiring a data processor, which action would a data controller NOT be able to depend upon to avoid liability in the event of a security breach?
A . Documenting due diligence steps taken in the pre-contractual stage.
B . Conducting a risk assessment to analyze possible outsourcing threats.
C . Requiring that the processor directly notify the appropriate supervisory authority.
D . Maintaining evidence that the processor was the best possible market choice available.
Answer: A
Latest CIPP-E Dumps Valid Version with 157 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
I think is C
The controller needs to notify the supervisory authority not the processor.
The answer should be C . Requiring that the processor directly notify the appropriate supervisory authority.
answer to “When hiring a data processor, which action would a data controller NOT be able to depend upon to avoid liability in the event of a security breach?” Seems wrong. It should be D