Question No. 1

In India, the obligation to appoint a Grievance Officer applies ONLY to companies that?

ADeal with sensitive personal data.

BConduct cross-border data transfers.

CAre considered part of the public sector.

DLack alternate enforcement mechanisms.

Show Answer

Correct Answer: A

https://taxguru.in/corporate-law/compliance-relation-appointment-grievance-officer-provisions- information-technology-act-2000.html

Question No. 2

The "due diligence" exemption in Hong Kong's PDPO was meant to apply to?

AThird-party data processors located in foreign countries.

BCompanies researching the viability of business mergers.

CService providers hosting customer information in the cloud.

DDirect marketers acting in the best interest of their company.

Show Answer

Correct Answer: A

Question No. 3

Cases in which an Indian company is accused of violating provisions of India's IT Act must be heard by?

AThe High Court.

BA Grievance Officer.

CAn Adjudicating Officer.

DThe Cyber Appellate Tribunal.

Show Answer

Correct Answer: A

Question No. 4

Which control is NOT included in the requirements established by the Monetary Authority of Singapore (MAS) for financial institutions in order to deter money-laundering and financial aid to terrorism (AML/CFT)?

AIdentifying and knowing customers.

BSharing personal information with the PDPC.

CConducting regular reviews of customer accounts.

DMonitoring and reporting suspicious financial transactions.

Show Answer

Correct Answer: A

https://www.mas.gov.sg/-/media/MAS/Regulations-and-Financial-Stability/Regulatory-and-Supervisory-Framework/Anti_Money-Laundering_Countering-the-Financing-of-Terrorism/Guidance-for- Effective-AML-CFT-Transaction-Monitoring-Controls.pdf (page 3)

Question No. 5

SCENARIO -- Please use the following to answer the next QUESTION:

Dracarys Inc. is a large multinational company with headquarters in Seattle, Washington, U.S.

ADracarys began as a small company making and selling women's clothing, but rapidly grew through its early innovative use of online platforms to sell its products. Dracarys is now one of the biggest names in the industry, and employs staff across the globe, and in Asia has employees located in both Singapore and Hong Kong.
Due to recent management restructuring they have decided, on the advice of external consultants, to open an office in India in order to centralize its call center as well as its internal human resource functions for the Asia region. Dracarys would like to centralize the following human resource functions in India:
1. The recruitment process;
2. Employee assessment and records management;
3. Employee benefits administration, including health insurance.
Dracarys will have employees on the ground in India managing the systems for the functions listed above. They have been presented with a variety of vendor options for these systems, and are currently assessing the suitability of these vendors for their needs.
The CEO of Dracarys is concerned about the behavior of her employees, especially online. After having proprietary company information being shared with competitors by former employees, she is eager to put certain measures in place to ensure that the activities of her employees, while on Dracarys' premises or when using any of Dracarys' computers and networks are not detrimental to the business.
Dracarys' external consultants are also advising the company on how to increase earnings. Dracary's management refuses to reduce production costs and compromise the quality of their garments, so the consultants suggested utilizing customer data to create targeted advertising and thus increase sales.
Dracarys and their vendor of choice must draft a contract that establishes agreement regarding all of the following factors EXCEPT?

ABreach notification.

BData retention periods.

CEmployee recruitment process.

DData subject consent provisions.

Show Answer

Correct Answer: D

Free IAPP CIPP-A Exam Actual Questions

The questions for CIPP-A were last updated On Nov 17, 2024