DCPLA Exam Dumps : DSCI Certified Privacy Lead Assessor

The DSCI Privacy Framework emphasizes that a privacy training and awareness program should:

Be role-based and targeted towards those who directly handle or have access to personal information

Include not just internal employees but also extend to third-party vendors and service providers who process personal information on behalf of the organization (B)

Officials from Law Enforcement Agencies (LEAs) are not part of an organization’s training scope; instead, interactions with LEAs are governed by legal access procedures, not internal training.

Therefore, option B is correct.

Section 15 of the Digital Personal Data Protection Act, 2023 outlines the duties of Data Principals. For breaches of these duties, the Act prescribes a financial penalty not exceeding ten thousand rupees. This provision ensures that Data Principals are accountable for misusing or violating data protection norms while balancing their responsibilities under the Act.

==============

The DSCI Assessment Framework for Privacy (DAF-P©) emphasizes the need for organizations to move beyond checkbox compliance to embrace “Demonstrable Accountability.”

This involves:

Being able to show evidence of privacy program implementation

Having appropriate governance structures

Showing that privacy principles are embedded into processes

This proactive and transparent approach to privacy governance aligns with leading global frameworks.