CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. IAPP
  5. CIPT

Free CIPT Exam Braindumps (page: 28)

Page 27 of 54
PDF with 285 Questions

Which of the following CANNOT be effectively determined during a code audit?

  1. Whether access control logic is recommended in all cases.
  2. Whether data is being incorrectly shared with a third-party.
  3. Whether consent is durably recorded in the case of a server crash.
  4. Whether the differential privacy implementation correctly anonymizes data.

Answer(s): D



An EU marketing company is planning to make use of personal data captured to make automated decisions based on profiling. In some cases, processing and automated decisions may have a legal effect on individuals, such as credit worthiness.

When evaluating the implementation of systems making automated decisions, in which situation would the company have to accommodate an individual's right NOT to be subject to such processing to ensure compliance under the General Data Protection Regulation (GDPR)?

  1. When an individual's legal status or rights are not affected by the decision.
  2. When there is no human intervention or influence in the decision-making process.
  3. When the individual has given explicit consent to such processing and suitable safeguards exist.
  4. When the decision is necessary for entering into a contract and the individual can contest the decision.

Answer(s): B



SCENARIO
Please use the following to answer next question:
EnsureClaim is developing a mobile app platform for managing data used for assessing car accident insurance claims. Individuals use the app to take pictures at the crash site, eliminating the need for a built-in vehicle camer

  1. EnsureClaim uses a third-party hosting provider to store data collected by the app. EnsureClaim customer service employees also receive and review app data before sharing with insurance claim adjusters.
    The app collects the following information:
    First and last name
    Date of birth (DOB)
    Mailing address
    Email address
    Car VIN number
    Car model
    License plate
    Insurance card number
    Photo
    Vehicle diagnostics
    Geolocation
    The app is designed to collect and transmit geolocation data. How can data collection best be limited to the necessary minimum?
  2. Allow user to opt-out geolocation data collection at any time.
  3. Allow access and sharing of geolocation data only after an accident occurs.
  4. Present a clear and explicit explanation about need for the geolocation data.
  5. Obtain consent and capture geolocation data at all times after consent is received.

Answer(s): C

Explanation:

By providing users with a clear and explicit explanation about why geolocation data is needed and how it will be used, the app can help ensure that only the minimum amount of data necessary is collected. This can also help build trust with users and increase transparency.



SCENARIO
Please use the following to answer next question:
EnsureClaim is developing a mobile app platform for managing data used for assessing car accident insurance claims. Individuals use the app to take pictures at the crash site, eliminating the need for a built-in vehicle camer

  1. EnsureClaim uses a third-party hosting provider to store data collected by the app. EnsureClaim customer service employees also receive and review app data before sharing with insurance claim adjusters.
    The app collects the following information:
    First and last name
    Date of birth (DOB)
    Mailing address
    Email address
    Car VIN number
    Car model
    License plate
    Insurance card number
    Photo
    Vehicle diagnostics
    Geolocation
    All of the following technical measures can be implemented by EnsureClaim to protect personal information that is accessible by third-parties EXCEPT?
  2. Encryption.
  3. Access Controls.
  4. De-identification.
  5. Multi-factor authentication.

Answer(s): B






Post your Comments and Discuss IAPP CIPT exam with other Community members:

CIPT Discussions & Posts