Try Before You Buy

Download a free sample of any of our exam questions and answers

  • 24/7 customer support, Secure shopping site
  • Free One year updates to match real exam scenarios
  • If you failed your exam after buying our products we will refund the full amount back to you.
Free Download
  • Home
  • Articles
  • [Sep-2021] CIPP-A Free PDF from VCE4Dumps [Q21-Q42]

[Sep-2021] CIPP-A Free PDF from VCE4Dumps [Q21-Q42]

Share

Sep-2021 Latest VCE4Dumps CIPP-A Exam Dumps with PDF and Exam Engine Free Updated Today!

Following are some new CIPP-A Real Exam Questions!

NEW QUESTION 21
What term is defined by the European Commission to mean any data that relates to an identified or identifiable individual?

  • A. Personally identifiable information.
  • B. Personal data.
  • C. Sensitive information.
  • D. Identified data.

Answer: B

 

NEW QUESTION 22
In Singapore, a potential employer can collect all of the following data on an individual in the pre-employment phase EXCEPT?

  • A. Information about the individual's children.
  • B. Information from a background check.
  • C. Postings from social media websites.
  • D. The individual's university attendance records.

Answer: B

 

NEW QUESTION 23
Under India's IT Rules 2011, data subjects have the right to correct inaccuracies in personal information collected about them only if?

  • A. They are able to prove the legitimacy of the corrections.
  • B. They request the corrections within a specified amount of time.
  • C. They are also the providers of the information.
  • D. They confirm their consent to maintain the information.

Answer: C

 

NEW QUESTION 24
Increases in which of the following were a major reason for the enactment of Hong Kong's Amendment Ordinance in 2012?

  • A. Biometric authentication.
  • B. Direct marketing practices.
  • C. Data breach reports.
  • D. Law enforcement requests.

Answer: B

 

NEW QUESTION 25
Under the PDPO, what are Hong Kong companies that make use of personal data required to do?

  • A. Appoint an official compliance officer.
  • B. Register with the appropriate data authority.
  • C. Honor all data subject requests for correcting personal information.
  • D. Provide contact information of persons handling data access requests.

Answer: C

 

NEW QUESTION 26
Both Sections 72 and 72A of India's IT Act 2000 involve unauthorized access of personal information. One main difference between the sections is that 72A does what?

  • A. Includes the concept of consent.
  • B. Adds a provision about wrongful loss or gain.
  • C. Stipulates that disclosure has to have occurred.
  • D. Specifies imprisonment as a possible penalty.

Answer: D

 

NEW QUESTION 27
Hong Kong's New Guidance on Direct Marketing clarified that direct marketing rules under the new regime do NOT apply if what condition exists?

  • A. The products or services are being offered for the exclusive use of an individual's organization.
  • B. The data subject has already given consent for other services offered by the company.
  • C. The products or services are being offered by the organization's parent company.
  • D. The data subject's personal data is collected from public registers or third parties.

Answer: B

 

NEW QUESTION 28
A Singapore employer can do all of the following without obtaining an employee's consent EXCEPT?

  • A. Use closed-circuit television surveillance in the workplace.
  • B. Disclose personal health data to a public agency during a health crisis.
  • C. Share an employee's personal data with a company that provides financial planning.
  • D. Use computer monitoring software on an employee's computers.

Answer: C

 

NEW QUESTION 29
Which provision of Hong Kong's Personal Data (Privacy) Ordinance (PDPO) strengthens the purpose limitation principle (DPP3)?

  • A. Notice; because the data subject must be provided with the purpose of the collection.
  • B. Public domain; because the data subjects must agree to the purpose before their information is made publicly available.
  • C. Prescribed consent; because the data subject must give express consent to their personal information being used for additional purposes.
  • D. Finality; because the purpose for collection of personal information from the subject must be directly related to a function of the collector.

Answer: A

 

NEW QUESTION 30
Which of the following is NOT a way that the Singapore government can monitor its citizens?

  • A. Through an online service that holds an individual's medical records.
  • B. Through the electronic road pricing system.
  • C. Through a personal computer registration system.
  • D. Through the national identity card system.

Answer: A

 

NEW QUESTION 31
What personal information is considered sensitive in almost all countries with privacy laws?

  • A. Criminal convictions.
  • B. Employment history.
  • C. Health information.
  • D. Marital status.

Answer: C

 

NEW QUESTION 32
Which Indian institution is vested with powers under the Credit Information Companies (Regulation) Act of 2005?

  • A. The Securities and Exchange Board of India.
  • B. The National Housing Bank.
  • C. The Oriental Bank of Commerce.
  • D. The Reserve Bank of India.

Answer: D

 

NEW QUESTION 33
SCENARIO - Please use the following to answer the next QUESTION:
Dracarys Inc. is a large multinational company with headquarters in Seattle, Washington, U.S.A.
Dracarys began as a small company making and selling women's clothing, but rapidly grew through its early innovative use of online platforms to sell its products. Dracarys is now one of the biggest names in the industry, and employs staff across the globe, and in Asia has employees located in both Singapore and Hong Kong.
Due to recent management restructuring they have decided, on the advice of external consultants, to open an office in India in order to centralize its call center as well as its internal human resource functions for the Asia region. Dracarys would like to centralize the following human resource functions in India:
1. The recruitment process;
2. Employee assessment and records management;
3. Employee benefits administration, including health insurance.
Dracarys will have employees on the ground in India managing the systems for the functions listed above. They have been presented with a variety of vendor options for these systems, and are currently assessing the suitability of these vendors for their needs.
The CEO of Dracarys is concerned about the behavior of her employees, especially online. After having proprietary company information being shared with competitors by former employees, she is eager to put certain measures in place to ensure that the activities of her employees, while on Dracarys' premises or when using any of Dracarys' computers and networks are not detrimental to the business.
Dracarys' external consultants are also advising the company on how to increase earnings. Dracary's management refuses to reduce production costs and compromise the quality of their garments, so the consultants suggested utilizing customer data to create targeted advertising and thus increase sales.
What must Dracarys confirm about the vendor in India in order to centralize elements of its Human Resource function?

  • A. That the vendor is bound by legally enforceable obligations to provide the personal data a standard of protection that is at least comparable to the protection under the Singapore PDPA.
  • B. That the vendor adheres to the same sector privacy rules followed by Dracarys headquarters based in Seattle regarding the transfer of personal data.
  • C. That the vendor files requests for transfer of personal data out of India through the offices of the privacy commissioners of Hong Kong and Singapore.
  • D. That the vendor submits for approval from Dracarys a privacy notice explaining how personal data will be protected under the Indian Information Technology Act.

Answer: D

 

NEW QUESTION 34
Which of the following is NOT excluded from the scope of Singapore's Do Not Call registry?

  • A. Messages from charitable organizations.
  • B. Messages from political candidates.
  • C. Messages that conduct market research.
  • D. Messages that promote investment opportunities.

Answer: C

 

NEW QUESTION 35
How can the privacy principles issued in 1980 by the Organisation for Economic Cooperation and Development (OECD) be defined?

  • A. Mandatory rules governing the protection of privacy and trans-border data flows within the European Union.
  • B. Guidelines governing the protection of privacy and trans-border data flows issued in collaboration with the Federal Trade Commission.
  • C. Mandatory rules governing the protection of privacy and trans-border data flows among binding member states.
  • D. Guidelines governing the protection of privacy and trans-border data flows of personal data in states that are members.

Answer: D

 

NEW QUESTION 36
Under what circumstances are smart identity cards required of Hong Kong citizens?

  • A. When making substantial purchases.
  • B. When seeking government services.
  • C. When opening bank accounts.
  • D. When using public transit systems.

Answer: B

 

NEW QUESTION 37
What clarification did India make in a 2011 Press Note regarding their Sensitive Personal Data Rules?

  • A. That the rules apply to data subjects located outside of India.
  • B. That sensitive personal data or information includes passwords, financial information, medical records, and
  • C. That the rules apply to persons or companies collecting sensitive data within India.
  • D. That the data processor must provide notice to the data subject before data is processed.

Answer: B

Explanation:
biometric information.

 

NEW QUESTION 38
In June 2011, the Hong Kong Privacy Commissioner determined that data subject consent is NOT valid if it is what?

  • A. Used for a directly related but separate purpose.
  • B. Bundled with other terms of the agreement.
  • C. Intended for direct marketing purposes.
  • D. Provided by the data subject solely in verbal form.

Answer: B

 

NEW QUESTION 39
According to India's IT Rules 2011, a body corporate operating in India is required to appoint what kind of authority?

  • A. A Chief Technology Officer.
  • B. A Grievance Officer.
  • C. A Data Protection Officer.
  • D. A Chief Risk Officer.

Answer: B

 

NEW QUESTION 40
SCENARIO - Please use the following to answer the next QUESTION:
Dracarys Inc. is a large multinational company with headquarters in Seattle, Washington, U.S.A.
Dracarys began as a small company making and selling women's clothing, but rapidly grew through its early innovative use of online platforms to sell its products. Dracarys is now one of the biggest names in the industry, and employs staff across the globe, and in Asia has employees located in both Singapore and Hong Kong.
Due to recent management restructuring they have decided, on the advice of external consultants, to open an office in India in order to centralize its call center as well as its internal human resource functions for the Asia region. Dracarys would like to centralize the following human resource functions in India:
1. The recruitment process;
2. Employee assessment and records management;
3. Employee benefits administration, including health insurance.
Dracarys will have employees on the ground in India managing the systems for the functions listed above. They have been presented with a variety of vendor options for these systems, and are currently assessing the suitability of these vendors for their needs.
The CEO of Dracarys is concerned about the behavior of her employees, especially online. After having proprietary company information being shared with competitors by former employees, she is eager to put certain measures in place to ensure that the activities of her employees, while on Dracarys' premises or when using any of Dracarys' computers and networks are not detrimental to the business.
Dracarys' external consultants are also advising the company on how to increase earnings. Dracary's management refuses to reduce production costs and compromise the quality of their garments, so the consultants suggested utilizing customer data to create targeted advertising and thus increase sales.
Which of the following guidelines does Dracarys NOT need to take into account when implementing monitoring and surveillance tools?

  • A. The Indian Information Technology Act of 2000.
  • B. The Hong Kong Code of Practice on Human Resource Management.
  • C. The Singapore advisory guidelines on the personal data protection act for selected topics (employment and CCTV).
  • D. The Hong Kong guide to monitoring personal data privacy at work.

Answer: A

 

NEW QUESTION 41
What benefit does making data pseudonymous offer to data controllers?

  • A. It ensures that it is impossible to re-identify the data.
  • B. It eliminates the need for a policy specifying data subject access rights.
  • C. It eliminates the responsibility to report data breaches.
  • D. It allows for further use of the data for research purposes.

Answer: A

 

NEW QUESTION 42
......

Resources From:

  1. 2021 Latest VCE4Dumps CIPP-A Exam Dumps (PDF & Exam Engine) Free Share: https://www.vce4dumps.com/CIPP-A-valid-torrent.html
  2. 2021 Latest VCE4Dumps CIPP-A PDF and CIPP-A Exam Dumps Free Share: https://drive.google.com/open?id=1ac94-DuUzWVf_XtEx5BaL961fN5Cow5n

Free Resources from VCE4Dumps, We Devoted to Helping You 100% Pass All Exams!

Related Articles

more
IAPP CIPP-A Certification Practice Exam

VCE4Dumps have latest exam dumps vce and valid certification dumps, with the help of vce dumps, you will get a high score in the test.

Latest VCE Dumps

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 VCE4Dumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy