Which of the following information must be provided by the data controller when complying with
GDPR right to be informed requirements?
104/105
Questions & Answers PDF
P-
A. The purpose of personal data processing.
B. The data subjects right to withdraw consent
C. The contact details of the Data Protection Officer (DPO).
D. The name of any organizations with whom personal data was shared.
C
105/105
If your organization has a recurring issue with colleagues not reporting personal data breaches, all of
the following are advisable to do EXCEPT?
C
“Respond” in the privacy operational lifecycle includes which of the following?
D
An organization’s internal audit team should do all of the following EXCEPT?
B
How do privacy audits differ from privacy assessments?
103/105
Questions & Answers PDF
P-
C
Which of the following is NOT a type of privacy program metric?
C
Which will best assist you in quickly identifying weaknesses in your network and storage?
A
There are different forms of monitoring available for organizations to consider when aligning with
their privacy program goals.
Which of the following forms of monitoring is best described as auditing?
A
What is least likely to be achieved by implementing a Data Lifecycle Management (DLM) program?
102/105
Questions & Answers PDF
P-
C
Data retention and destruction policies should meet all of the following requirements EXCEPT?
C