PDPF Questions Bank

Systematic description of the fiduciary duties to ensure compliance to all relevant laws and regulations

An assessment of the necessity and proportionality of the processing operations in relation to the purposes

The documentation of the risks to the rights and freedoms of the data protection officer

The measures envisaged to address the privacy compliance frameworks risks

The Supervisory Authority must be notified, but there is no need to notify those responsible for the data subjects, as whoever had access to the data is also someone in the same situation.

The Supervisory Authority must be notified and also those responsible for the holders who had their data exposed.

There is no need to notify the Supervisory Authority, however those responsible for the holders who had

their data exposed must be notified.

There is no need to notify the Supervisory Authority or those responsible for the data subjects, as whoever had access to the data is also someone in the same situation.

A situation in which one is not observed or distributed by the government or uninvited people.

The right to respect for a person’s private and family life, his home and his correspondence.

The fundamental right to respect a person’s physical and mental integrity.

The right to be protected against unsolicited intrusion into a computer or network and the processing of personal data by third parties.

illegally obtained corporate data from a human resources management system

Personal data is processed without a binding contract.

Personal data is processed by anyone other than the controller, processor or, possibly, subprocessor

The operation of a vulnerable server in the internal network of the processor