CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. IAPP
  5. CIPT

Free CIPT Exam Braindumps (page: 5)

Page 5 of 54
PDF with 285 Questions

Which Organization for Economic Co-operation and Development (OECD) privacy protection principle encourages an organization to obtain an individual s consent before transferring personal information?

  1. Individual participation.
  2. Purpose specification.
  3. Collection limitation.
  4. Accountability.

Answer(s): A

Explanation:

The individual participation principle encourages an organization to obtain an individual's consent before transferring personal information. According to this principle, an individual should have the right to obtain from a data controller confirmation of whether or not the data controller has data relating to him; to have communicated to him such data within a reasonable time; to be given reasons if a request made under subparagraphs (a) and (b) is denied by the data controller; and to challenge such denial; and to challenge data relating to him and, if the challenge is successful, to have the data erased, rectified, completed or amended. The other options are not principles that encourage an organization to obtain an individual's consent before transferring personal information.

http://www.oecdprivacy.org/



Granting data subjects the right to have data corrected, amended, or deleted describes?

  1. Use limitation.
  2. Accountability.
  3. A security safeguard
  4. Individual participation

Answer(s): D


Reference:

https://www.ncbi.nlm.nih.gov/books/NBK236546/

Granting data subjects the right to have data corrected, amended, or deleted describes individual participation. As explained above, the individual participation principle gives individuals certain rights over their personal data held by a data controller. One of these rights is to challenge data relating to them and, if the challenge is successful, to have the data erased, rectified, completed or amended. The other options are not principles that describe granting data subjects this right.



What is a mistake organizations make when establishing privacy settings during the development of applications?

  1. Providing a user with too many choices.
  2. Failing to use "Do Not Track" technology.
  3. Providing a user with too much third-party information.
  4. Failing to get explicit consent from a user on the use of cookies.

Answer(s): D

Explanation:

Failing to get explicit consent from a user on the use of cookies is a mistake organizations make when establishing privacy settings during the development of applications. Cookies are small files that store information about users' preferences and behavior on websites. They can be used for various purposes such as authentication, personalization, analytics, advertising etc.2 However, they can also pose privacy risks as they may collect sensitive or personal information without users' knowledge or consent. Therefore, organizations should inform users about how they use cookies and obtain their explicit consent before placing cookies on their devices. This is also required by some laws such as EU's General Data Protection Regulation (GDPR) and ePrivacy Directive. The other options are not mistakes organizations make when establishing privacy settings during the development of applications.



Which of the following suggests the greatest degree of transparency?

  1. A privacy disclosure statement clearly articulates general purposes for collection
  2. The data subject has multiple opportunities to opt-out after collection has occurred.
  3. A privacy notice accommodates broadly defined future collections for new products.
  4. After reading the privacy notice, a data subject confidently infers how her information will be used.

Answer(s): D

Explanation:

After reading the privacy notice, a data subject confidently infers how her information will be used suggests the greatest degree of transparency3

https://www.informatica.com/resources/articles/what-is-data-quality.html



Page 5 of 54



Post your Comments and Discuss IAPP CIPT exam with other Community members:

Leo commented on October 30, 2023
data quality oecd
Anonymous
upvote

Leo commented on October 30, 2023
data quality OECD
Anonymous
upvote