CertsTopics Logo

Weekend Sale Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CIPP-A Reviews Questions

Page: 3 / 3
Total 90 questions
Get CIPP-A Full Access Download CIPP-A PDF

Certified Information Privacy Professional/Asia (CIPP/A) Questions and Answers

Question 9

Based on the model contract released by the Privacy Commissioner for Personal Data (PDPC), Hong Kong, all of the following sections are recommended to be put into a contract to address Ordinance 33 (Data transfer/export) of Hong Kong's Personal Data Privacy Ordinance (PDPO) EXCEPT?

Options:

A.

Liability and indemnity.

B.

Exemptions and Definitions.

C.

Termination of the contract.

D.

Obligations of the Transferee.

Question 10

In the Asia-Pacific Economic Cooperation (APEC) Privacy Framework, what exception is allowed to the Access and Correction principle?

Options:

A.

Paper-based records.

B.

Publicly-available information.

C.

Foreign intelligence.

D.

Unreasonable expense.

Question 11

SCENARIO – Please use the following to answer the next QUESTION:

Dracarys Inc. is a large multinational company with headquarters in Seattle, Washington, U.S.A. Dracarys began as a small company making and selling women's clothing, but rapidly grew through its early innovative use of online platforms to sell its products. Dracarys is now one of the biggest names in the industry, and employs staff across the globe, and in Asia has employees located in both Singapore and Hong Kong.

Due to recent management restructuring they have decided, on the advice of external consultants, to open an office in India in order to centralize its call center as well as its internal human resource functions for the Asia region. Dracarys would like to centralize the following human resource functions in India:

1.The recruitment process;

2.Employee assessment and records management;

3.Employee benefits administration, including health insurance.

Dracarys will have employees on the ground in India managing the systems for the functions listed above. They have been presented with a variety of vendor options for these systems, and are currently assessing the suitability of these vendors for their needs.

The CEO of Dracarys is concerned about the behavior of her employees, especially online. After having proprietary company information being shared with competitors by former employees, she is eager to put certain measures in place to ensure that the activities of her employees, while on Dracarys' premises or when using any of Dracarys' computers and networks are not detrimental to the business.

Dracarys' external consultants are also advising the company on how to increase earnings. Dracary's management refuses to reduce production costs and compromise the quality of their garments, so the consultants suggested utilizing customer data to create targeted advertising and thus increase sales.

What must Dracarys confirm about the vendor in India in order to centralize elements of its Human Resource function?

Options:

A.

That the vendor submits for approval from Dracarys a privacy notice explaining how personal data will be protected under the Indian Information Technology Act.

B.

That the vendor files requests for transfer of personal data out of India through the offices of the privacy commissioners of Hong Kong and Singapore.

C.

That the vendor is bound by legally enforceable obligations to provide the personal data a standard of protection that is at least comparable to the protection under the Singapore PDPA.

D.

That the vendor adheres to the same sector privacy rules followed by Dracarys headquarters based in Seattle regarding the transfer of personal data.

Question 12

Which Indian institution is vested with powers under the Credit Information Companies (Regulation) Act of 2005?

Options:

A.

The Reserve Bank of India.

B.

The National Housing Bank.

C.

The Oriental Bank of Commerce.

D.

The Securities and Exchange Board of India.

Page: 3 / 3
Total 90 questions
Get CIPP-A Full Access Download CIPP-A PDF