CIPP/E IAPP Exam (T/F) Review Questions with complete Marking Scheme 2024/2025
True or False: Anonymizing personal data is always possible. - correct answer False
True or false: Pseudonymous data is protected by the GDPR. - correct answer True
True or false: A data controller may be a natu...
True or False: Anonymizing personal data is always possible. -
correct answer False
True or false: Pseudonymous data is protected by the GDPR. -
correct answer True
True or false: A data controller may be a natural person or a
legal entity, while a data processor must be a legal entity. -
correct answer False
True or false: a contract protects a processor from being held to
the same legal obligations as the controller. - correct answer
False
True or False: A processor may decide wehre and how to process
personal data. - correct answer False
True or false: When personal data is being processed, there is
always a controller. - correct answer True
What is data processing:
-Any action involved in securing and protecting data
-Any action performed upon data
-Any action involved in collecting personal data
,-Any action that adapts or alters data. - correct answer Any
action performed upon data.
What are the criteria used to determine the territorial scope of
the GDPR: Select all that apply.
-Processing of personal data of EU subjects relating to offering
goods or services or monitoring behaviour
-Processing of personal data by a controller not established in
the EU but in a place where member state law applies
-Processing of personal data when a controller or processor is
established in the EU - correct answer All.
Which of the following fall under the material scope of the
GDPR? Select all that apply.
-processing personal data without human intervention
-processing anonymous data
-Processing personal data that forms part of a filing system. -
correct answer All EXCEPT anonymous data
Exclusions to the material scope of GDPR should be interpreted
broadly. True or false? - correct answer False
True or false: At least three of the legitimate processing criteria
within the GDPR must ve met for personal data to be processed
legally. - correct answer False
,Read the following and select all the GDPR principles that have
been violated: An access control system used by an
organization's maintenance team for building security is later
used by a manager in a different department to determine if
employees are arriving late for work. The employees are not
informed of this new processing action, and the manager does
not create consistent records of the processing activities.
-Integrity and confidentiality
-Accountability
-Data quality and accuracy - correct answer This violates
-Integrity and confidentiality
Accountability
Which legitimate processing criteria is commonly used when a
customer purchases a good or service?
-Consent
-Vital interests
-Contract - correct answer Contract
Which exception to the prohibition on processing special
categories of data must be explicit?
-Vital interests
-Publicly available data
-Consent - correct answer Consent
, Select all that are potential solutions to lengthy privacy notices.
-Key notices
-Standardized Icons
-Terms of Agreement
-Just in time notices
-Layered privacy notices - correct answer All EXCEPT
-Key notices
-Terms of Agreement
True of False: A controller may charge an administrative fee to
data subjects if they request that the information provision be in
oral format. - correct answer False
Privacy notices should use visualisation where appropriate. True
or false? - correct answer True
True or false: Information provided to data subjects about the
processing of their personal data should be written in clear and
plain language that is understandable. - correct answer True
True or false: The transparency principle states that detail is
more important that conciseness in a privacy notice. - correct
answer False
The information that must be provided to data subjects will
depend on the situation. What information must be provided to
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller KieranKent55. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.99. You're not tied to anything after your purchase.
