Privacy and Data Protection Foundation
Last Update May 18, 2024
Total Questions : 149
We are offering FREE PDPF Exin exam questions. All you do is to just go and sign up. Give your details, prepare PDPF free exam questions and then go for complete pool of Privacy and Data Protection Foundation test questions that will help you more.
According to the GDPR, for which situations should a Data Protection Impact Assessment (DPIA) be conducted?
What is the term used in the General Data Protection Regulation (GDPR) for the disclosure of, or unauthorized access to, personal data?
Some data processing falls outside of the material scope of the GDPR. What type of processing is not subject to the GDPR?
According to the GDPR, in what situation must data subjects always be notified of a personal data breach?
Personal data as defined in the GDPR can be divided into several types. One of these types is described: Data that directly or indirectly reveal someone’s racial or ethnic background, political, philosophical, religious views, union affiliation and data related to health or sex life and sexual orientation. What type of personal data is this?
After appearing in a photo posted by a friend on a social network, a person felt embarrassed and decided that he wants the photo to be deleted.
According to the General Data Protection Regulation (GDPR), does that person have the right to delete this photo?
In the contract between the controller and processor for the processing of personal data, which of the options below represents the sole responsibility of the Controller?
In the GDPR, some types of personal data are regarded as special category personal data. Which personal data are considered special category personal data?
Racial or ethnic origin, political opinions, religious or philosophical beliefs, or union membership, as well as the processing of genetic data, biometric data, health data or data relating to a person’s sexual life or sexual orientation.
What does this sentence above refer to?
The General Data Protection Regulation (GDPR) is related to the protection of personal data. What is the definition of personal data?
The General Data Protection Regulation (GDPR) in its Article 30 legislates on the Records of treatment activities.
If requested, the controller must provide these records:
Subcontracting treatment is regulated by contract or other regulatory act under Union or Member State law, which links the processor to the controller.
What this contract or other regulatory act stipulates?
A person who works for a union took home a draft newsletter to finish it. The thumb drive containing the draft and contact list has been lost. To whom, among others, this data breach should be reported?
The Control Authority may impose fines on organizations that are not meeting the mandatory requirements of the General Data Protection Regulation (GDPR).
For processing of personal data to be legal, a number of requirements must be fulfilled.
What is a requirement for lawful personal data processing?
According to the General Data Protection Regulation (GDPR), which category of personal data is considered to be sensitive data?
Personal data can be transferred outside of the EEA. According to the GDPR, which transfers outside the EEA are always lawful?
A controller wants to outsource processing of personal data to a processor. What must be done before outsourcing?