DCPLA 試験問題を無料オンラインアクセス

In which of the following cases would an organization be more prone to risk acceptance vs. risk mitigation?

• A.The organization uses exclusively a quantitative process to measure risk
• B.The organization's risk tolerance is low
• C.The organization uses exclusively a qualitative process lo measure risk
• D.The organization's risk tolerance is high

An entity shall retain personal data only as long as may be reasonably necessary to satisfy the purpose for which it is processed; or with respect to an established retention period. This privacy principle is known as?

• A.Collection Limitation
• B.Storage Limitation
• C.Security safeguards
• D.Use Limitation

What are the different types of non-conformities possible for assessor to assign in an assessment? Tick all that apply.

• A.High Risk
• B.None of the above
• C.Minor
• D.Low Risk
• E.Major

Categorise the following statement:
"For an identified data leakage scenario, security team is struggling to configure rules."

• A.Capability
• B.Enforcement
• C.Visibility
• D.Demonstration

Which of the following statements is true?

• A.Categories of sensitive personal data remain constant across geographies
• B.None of the above
• C.Categories of sensitive personal data vary based on culture, context and geographical region
• D.Sensitive personal data categorisation isn't a function of culture, context and place