لا تريد أن تفوت شيئا؟

نصائح اجتياز امتحان الشهادة

آخر أخبار الامتحانات ومعلومات الخصم

برعاية وحديثة من قبل خبرائنا

نعم، أرسل لي النشرة الإخبارية

خذ اختبارات أخرى عبر الإنترنت

السؤال #1
SCENARIO Please use the following to answer the next QUESTION: It's just what you were afraid of. Without consulting you, the information technology director at your organization launched a new initiative to encourage employees to use personal devices for conducting business. The initiative made purchasing a new, high-specification laptop computer an attractive option, with discounted laptops paid for as a payroll deduction spread over a year of paychecks. The organization is also paying the sales taxes. It
A. The use of personal equipment is a cost-effective measure that leads to no greater security risks than are always present in a modern organization
B. Any computer or other equipment is company property whenever it is used for company business
C. While the company may not own the equipment, it is required to protect the business-related data on any equipment used by its employees
D. The use of personal equipment must be reduced as it leads to inevitable security risks
عرض الإجابة
اجابة صحيحة: C
السؤال #2
Which statement is FALSE regarding the use of technical security controls?
A. Technical security controls are part of a data governance strategy
B. Technical security controls deployed for one jurisdiction often satisfy another jurisdiction
C. Most privacy legislation lists the types of technical security controls that must be implemented
D. A person with security knowledge should be involved with the deployment of technical security controls
عرض الإجابة
اجابة صحيحة: B
السؤال #3
Under the General Data Protection Regulation (GDPR), which situation would be LEAST likely to require a Data Protection Impact Assessment (DPIA)?
A. A health clinic processing its patients’ genetic and health data
B. The use of a camera system to monitor driving behavior on highways
C. A Human Resources department using a tool to monitor its employees’ internet activity
D. An online magazine using a mailing list to send a generic daily digest to marketing emailscorrect
عرض الإجابة
اجابة صحيحة: D
السؤال #4
Which of the following is an example of Privacy by Design (PbD)?
A. A company hires a professional to structure a privacy program that anticipates the increasing demands of new laws
B. The human resources group develops a training program for employees to become certified in privacy policy
C. A labor union insists that the details of employers' data protection methods be documented in a new contract
D. The information technology group uses privacy considerations to inform the development of new networking software
عرض الإجابة
اجابة صحيحة: D
السؤال #5
Formosa International operates in 20 different countries including the United States and France. What organizational approach would make complying with a number of different regulations easier?
A. Data mapping
B. Fair Information Practices
C. Rationalizing requirements
D. Decentralized privacy management
عرض الإجابة
اجابة صحيحة: B
السؤال #6
SCENARIO Please use the following to answer the next QUESTION: Natalia, CFO of the Nationwide Grill restaurant chain, had never seen her fellow executives so anxious. Last week, a data processing firm used by the company reported that its system may have been hacked, and customer data such as names, addresses, and birthdays may have been compromised. Although the attempt was proven unsuccessful, the scare has prompted several Nationwide Grill executives to Question the company's privacy program at today's m
A. By requiring training only on an as-needed basis
B. By offering alternative delivery methods for trainings
C. By introducing a system of periodic refresher trainings
D. By customizing training based on length of employee tenure
عرض الإجابة
اجابة صحيحة: B
السؤال #7
SCENARIO Please use the following to answer the next QUESTION: Richard McAdams recently graduated law school and decided to return to the small town of Lexington, Virginia to help run his aging grandfather's law practice. The elder McAdams desired a limited, lighter role in the practice, with the hope that his grandson would eventually take over when he fully retires. In addition to hiring Richard, Mr. McAdams employs two paralegals, an administrative assistant, and a part-time IT specialist who handles all
A. Prioritizing the data by order of importance
B. Minimizing the time it takes to retrieve the sensitive data
C. Reducing the volume and the type of data that is stored in its system
D. Increasing the number of experienced staff to code and categorize the incoming data
عرض الإجابة
اجابة صحيحة: C
السؤال #8
SCENARIO Please use the following to answer the next QUESTION: Henry Home Furnishings has built high-end furniture for nearly forty years. However, the new owner, Anton, has found some degree of disorganization after touring the company headquarters. His uncle Henry had always focused on production C not data processing C and Anton is concerned. In several storage rooms, he has found paper files, disks, and old computers that appear to contain the personal data of current and former employees and customers.
A. Customer communication
B. Employee access to electronic storage
C. Employee advisement regarding legal matters
D. Controlled access at the company headquarters
عرض الإجابة
اجابة صحيحة: D
السؤال #9
SCENARIO Please use the following to answer the next QUESTION: Perhaps Jack Kelly should have stayed in the U.S. He enjoys a formidable reputation inside the company, Special Handling Shipping, for his work in reforming certain "rogue" offices. Last year, news broke that a police sting operation had revealed a drug ring operating in the Providence, Rhode Island office in the United States. Video from the office's video surveillance cameras leaked to news operations showed a drug exchange between Special Han
A. Training needs must be weighed against financial costs
B. Training on local laws must be implemented for all personnel
C. Training must be repeated frequently to respond to new legislation
D. Training must include assessments to verify that the material is mastered
عرض الإجابة
اجابة صحيحة: B
السؤال #10
SCENARIO Please use the following to answer the next QUESTION: Ben works in the IT department of IgNight, Inc., a company that designs lighting solutions for its clients. Although IgNight's customer base consists primarily of offices in the US, some individuals have been so impressed by the unique aesthetic and energy-saving design of the light fixtures that they have requested IgNight's installations in their homes across the globe. One Sunday morning, while using his work laptop to purchase tickets for an
A. Tabletop exercises
B. Update its data inventory
C. IT security awareness training
D. Share communications relating to scheduled maintenance
عرض الإجابة
اجابة صحيحة: A
السؤال #11
What United States federal law requires financial institutions to declare their personal data collection practices?
A. The Kennedy-Hatch Disclosure Act of 1997
B. The Gramm-Leach-Bliley Act of 1999
C. SUPCLA, or the federal Superprivacy Act of 2001
D. The Financial Portability and Accountability Act of 2006
عرض الإجابة
اجابة صحيحة: B
السؤال #12
When supporting the business and data privacy program expanding into a new jurisdiction, it is important to do all of the following EXCEPT?
A. Identify the stakeholders
B. Appoint a new Privacy Officer (PO) for that jurisdiction
C. Perform an assessment of the laws applicable in that new jurisdiction
D. Consider culture and whether the privacy framework will need to account for changes in culture
عرض الإجابة
اجابة صحيحة: D
السؤال #13
“Collection”, “access” and “destruction” are aspects of what privacy management process?
A. The data governance strategycorrect
B. The breach response plan
C. The metric life cycle
D. The business case
عرض الإجابة
اجابة صحيحة: A
السؤال #14
SCENARIO Please use the following to answer the next QUESTION: Richard McAdams recently graduated law school and decided to return to the small town of Lexington, Virginia to help run his aging grandfather's law practice. The elder McAdams desired a limited, lighter role in the practice, with the hope that his grandson would eventually take over when he fully retires. In addition to hiring Richard, Mr. McAdams employs two paralegals, an administrative assistant, and a part-time IT specialist who handles all
A. Prioritizing the data by order of importance
B. Minimizing the time it takes to retrieve the sensitive data
C. Reducing the volume and the type of data that is stored in its system
D. Increasing the number of experienced staff to code and categorize the incoming data
عرض الإجابة
اجابة صحيحة: C
السؤال #15
What is the main reason to begin with 3-5 key metrics during the program development process?
A. To avoid undue financial costs
B. To keep the focus on the main organizational objectives
C. To minimize selective data use
D. To keep the process limited to as few people as possible
عرض الإجابة
اجابة صحيحة: A
السؤال #16
Formosa International operates in 20 different countries including the United States and France. What organizational approach would make complying with a number of different regulations easier?
A. Data mapping
B. Fair Information Practices
C. Rationalizing requirements
D. Decentralized privacy management
عرض الإجابة
اجابة صحيحة: C
السؤال #17
SCENARIO Please use the following to answer the next QUESTION: As the Director of data protection for Consolidated Records Corporation, you are justifiably pleased with your accomplishments so far. Your hiring was precipitated by warnings from regulatory agencies following a series of relatively minor data breaches that could easily have been worse. However, you have not had a reportable incident for the three years that you have been with the company. In fact, you consider your program a model that others
A. Assess
B. Protect
C. Respond
D. Sustain
عرض الإجابة
اجابة صحيحة: D
السؤال #18
SCENARIO Please use the following to answer the next QUESTION: Manasa is a product manager at Omnipresent Omnimedia, where she is responsible for leading the development of the company's flagship product, the Handy Helper. The Handy Helper is an application that can be used in the home to manage family calendars, do online shopping, and schedule doctor appointments. After having had a successful launch in the United States, the Handy Helper is about to be made available for purchase worldwide. The packaging
A. Sanjay should advise the distributor that Omnipresent Omnimedia has certified to the Privacy Shield Framework and there should be no issues
B. Sanjay should work with Manasa to review and remediate the Handy Helper as a gating item before it is released
C. Sanjay should document the data life cycle of the data collected by the Handy Helper
D. Sanjay should write a privacy policy to include with the Handy Helper user guide
عرض الإجابة
اجابة صحيحة: C
السؤال #19
SCENARIO Please use the following to answer the next QUESTION: Henry Home Furnishings has built high-end furniture for nearly forty years. However, the new owner, Anton, has found some degree of disorganization after touring the company headquarters. His uncle Henry had always focused on production C not data processing C and Anton is concerned. In several storage rooms, he has found paper files, disks, and old computers that appear to contain the personal data of current and former employees and customers.
A. Customer communication
B. Employee access to electronic storage
C. Employee advisement regarding legal matters
D. Controlled access at the company headquarters
عرض الإجابة
اجابة صحيحة: D
السؤال #20
SCENARIO Please use the following to answer the next QUESTION: Ben works in the IT department of IgNight, Inc., a company that designs lighting solutions for its clients. Although IgNight's customer base consists primarily of offices in the US, some individuals have been so impressed by the unique aesthetic and energy-saving design of the light fixtures that they have requested IgNight's installations in their homes across the globe. One Sunday morning, while using his work laptop to purchase tickets for an
A. Incident Response Plan
B. Code of Business Conduct
C. IT Systems and Operations Handbook
D. Business Continuity and Disaster Recovery Plan
عرض الإجابة
اجابة صحيحة: B
السؤال #21
Under the General Data Protection Regulation (GDPR), what must be included in a written agreement between the controller and processor in relation to processing conducted on the controller's behalf?
A. An obligation on the processor to report any personal data breach to the controller within 72 hours
B. An obligation on both parties to report any serious personal data breach to the supervisory authority
C. An obligation on both parties to agree to a termination of the agreement if the other party is responsible for a personal data breach
D. An obligation on the processor to assist the controller in complying with the controller's obligations to notify the supervisory authority about personal data breaches
عرض الإجابة
اجابة صحيحة: D
السؤال #22
SCENARIO Please use the following to answer the next question: Paul Daniels, with years of experience as a CEO, is worried about his son Carlton’s successful venture, Gadgo. A technological innovator in the communication industry that quickly became profitable, Gadgo has moved beyond its startup phase. While it has retained its vibrant energy, Paul fears that under Carlton’s direction, the company may not be taking its risks or obligations as seriously as it needs to. Paul has hired you, a privacy Consultan
A. Ad hoccorrect
B. Defined
C. Repeatable
D. Managed
عرض الإجابة
اجابة صحيحة: A
السؤال #23
What is the main function of the Asia-Pacific Economic Cooperation Privacy Framework?
A. Enabling regional data transfers
B. Protecting data from parties outside the region
C. Establishing legal requirements for privacy protection in the region
D. Marketing privacy protection technologies developed in the region
عرض الإجابة
اجابة صحيحة: A
السؤال #24
You would like your organization to be independently audited to demonstrate compliance with international privacy standards and to identify gaps for remediation. Which type of audit would help you achieve this objective?
A. First-party audit
B. Second-party audit
C. Third-party audit
D. Fourth-party audit
عرض الإجابة
اجابة صحيحة: C
السؤال #25
SCENARIO Please use the following to answer the next QUESTION: Manasa is a product manager at Omnipresent Omnimedia, where she is responsible for leading the development of the company's flagship product, the Handy Helper. The Handy Helper is an application that can be used in the home to manage family calendars, do online shopping, and schedule doctor appointments. After having had a successful launch in the United States, the Handy Helper is about to be made available for purchase worldwide. The packaging
A. Sanjay should advise the distributor that Omnipresent Omnimedia has certified to the Privacy Shield Framework and there should be no issues
B. Sanjay should work with Manasa to review and remediate the Handy Helper as a gating item before it is released
C. Sanjay should document the data life cycle of the data collected by the Handy Helper
D. Sanjay should write a privacy policy to include with the Handy Helper user guide
عرض الإجابة
اجابة صحيحة: B
السؤال #26
SCENARIO Please use the following to answer the next QUESTION: Manasa is a product manager at Omnipresent Omnimedia, where she is responsible for leading the development of the company's flagship product, the Handy Helper. The Handy Helper is an application that can be used in the home to manage family calendars, do online shopping, and schedule doctor appointments. After having had a successful launch in the United States, the Handy Helper is about to be made available for purchase worldwide. The packaging
A. Document the data flows for the collected data
B. Conduct a Privacy Impact Assessment (PIA) to evaluate the risks involved
C. Implement a policy restricting data access on a "need to know" basis
D. Limit data transfers to the US by keeping data collected in Europe within a local data center
عرض الإجابة
اجابة صحيحة: C
السؤال #27
SCENARIO Please use the following to answer the next QUESTION: It's just what you were afraid of. Without consulting you, the information technology director at your organization launched a new initiative to encourage employees to use personal devices for conducting business. The initiative made purchasing a new, high-specification laptop computer an attractive option, with discounted laptops paid for as a payroll deduction spread over a year of paychecks. The organization is also paying the sales taxes. It
A. Interview the person reporting the incident following a standard protocol
B. Call the police to investigate even if you are unsure a crime occurred
C. Investigate the background of the person reporting the incident
D. Check company records of the latest backups to see what data may be recoverable
عرض الإجابة
اجابة صحيحة: A
السؤال #28
What is one obligation that the General Data Protection Regulation (GDPR) imposes on data processors?
A. To honor all data access requests from data subjects
B. To inform data subjects about the identity and contact details of the controller
C. To implement appropriate technical and organizational measures that ensure an appropriate level of security
D. To carry out data protection impact assessments in cases where processing is likely to result in high risk to the rights and freedoms of individuals
عرض الإجابة
اجابة صحيحة: C
السؤال #29
SCENARIO Please use the following to answer the next question: Paul Daniels, with years of experience as a CEO, is worried about his son Carlton’s successful venture, Gadgo. A technological innovator in the communication industry that quickly became profitable, Gadgo has moved beyond its startup phase. While it has retained its vibrant energy, Paul fears that under Carlton’s direction, the company may not be taking its risks or obligations as seriously as it needs to. Paul has hired you, a privacy Consultan
A. A supplier audit
B. An internal audit
C. A third-party auditcorrect
D. A self-certification
عرض الإجابة
اجابة صحيحة: C
السؤال #30
“Collection”, “access” and “destruction” are aspects of what privacy management process?
A. The data governance strategycorrect
B. The breach response plan
C. The metric life cycle
D. The business case
عرض الإجابة
اجابة صحيحة: A

View The Updated IAPP Exam Questions

SPOTO Provides 100% Real IAPP Exam Questions for You to Pass Your IAPP Exam!

عرض الإجابات بعد التقديم

يرجى إرسال البريد الإلكتروني الخاص بك والواتس اب للحصول على إجابات الأسئلة.

ملحوظة: يرجى التأكد من صلاحية معرف البريد الإلكتروني وWhatsApp حتى تتمكن من الحصول على نتائج الاختبار الصحيحة.

بريد إلكتروني:
رقم الواتس اب/الهاتف: