New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

Free Access IAPP CIPP-E New Release

Page: 3 / 19
Total 268 questions

Certified Information Privacy Professional/Europe (CIPP/E) Questions and Answers

Question 9

A mobile device application that uses cookies will be subject to the consent requirement of which of the

following?

Options:

A.

The ePrivacy Directive

B.

The E-Commerce Directive

C.

The Data Retention Directive

D.

The EU Cybersecurity Directive

Question 10

Which statement provides an accurate description of a directive?

Options:

A.

A directive speo5es certain results that must be achieved, but each member state is free to decide how to turn it into a national law

B.

A directive has binding legal force throughout every member state and enters into force on a set date in all the member states.

C.

A directive is a legal act relating to specific cases and directed towards member states, companies 0' private individuals.

D.

A directive is a legal act that applies automatically and uniformly to all EU countries as soon as it enters into force.

Question 11

To which of the following parties does the territorial scope of the GDPR NOT apply?

Options:

A.

All member countries of the European Economic Area.

B.

All member countries party to the Treaty of Lisbon.

C.

All member countries party to the Paris Agreement.

D.

All member countries of the European Union.

Question 12

SCENARIO

Please use the following to answer the next question:

Jane Stan's her new role as a Data Protection Officer (DPO) at a Malta-based company that allows anyone to buy and sell cryptocurrencies via its online platform. The company stores and processes the personal data of its customers in a dedicated data center located in Malta |EU).

People wishing to trade cryptocurrencies are required to open an online account on the platform. They then must successfully pass a KYC due diligence procedure aimed at preventing money laundering and ensuring compliance with applicable financial regulations.

The non-European customers are also required to waive all their GDPR rights by reading a disclaimer written in bold and belong a checkbox on a separate page in order to get their account approved on the platform.

The customers must likewise accept the terms of service of the platform. The terms of service also include a privacy policy section, saying, among other things, that if a

Which of the following must be a component of the anti-money-laundering data-sharing practice of the platform?

Options:

A.

The terms of service shall also enumerate all applicable anti-money laundering few.

B.

Customers shall have an opt-out feature to restrict data sharing with law enforcement agencies after the registration.

C.

The terms of service shall include the address of the anti-money laundering agency and contacts of the investigators who may access me data.

D.

Customers snail receive a clear and conspicuous notice about such data sharing before submitting their data during the registration process.

Page: 3 / 19
Total 268 questions