Question 61
According to EU authorities, which country has yet to receive adequacy status?
Question 62
Under GDPR, the European Commission takes the adequacy decision in relation to privacy laws in a third country, territory, sector etc. A subjective approach is taken. For the assessment of whether a third country, a territory, or one or more specific sectors within that third country, or an international organization has an adequate level of protection, who is required to provide an opinion to the Commission?
Question 63
Which of the following aspects of personal information lifecycle management should the privacy function in an organization be concerned with i. Policy definition ii. Policy enforcement iii. IT infrastructure setup iv. Physical infrastructure setup Please select the correct option:
Question 64
Choose from the options below to group privacy principles into user centric (requiring people's involvement) and organization centric (restricted to processes within the organization) categories:
Question 65
Which of the following parameters should ideally be addressed by a privacy program of an organization?