Celebrate 2025 with Discount Offer - Coupon code:

IAPP CIPP-E Exam Dumps

Certification Exams

Downloadable PDF versions

100% Confidential

Updated Regularly

Advanced Features

Number Of Questions: 268

$59.00

Exam Details

Exam Name:

Certified Information Privacy Professional/Europe (CIPP/E)

Exam Code:

CIPP-E

Total Questions in Exam:

268

Demo Questions

Q1. Which aspect of processing does the GDPR allow processors to determine for themselves?

A.The question of whether the controller needs to be informed about the substitution of another processor carrying out specific processing activities on behalf of the controller.

B. Their own purposes for the processing, if such purposes are compatible with those for which the personal data were initially collected.

C. The parameters of their marketing campaigns using personal data relating to the controller's customers.

D. Their own type of hardware or software and the specific security measures for the processing.

Correct Answer: D

Q2. SCENARIO - Please use the following to answer the next question: It has been a tough season for the Spanish Handball League, with acts of violence and racism having increased exponentially during their last few matches. In order to address this situation, the Spanish Minister of Sports, in conjunction with the National Handball League Association, issued an Administrative Order (the "Act") obliging all the professional clubs to install a fingerprint-reading system for accessing some areas of the sports halls, primarily the ones directly behind the goalkeepers. The rest of the areas would retain the current access system, which allows any spectators access as long as they hold valid tickets. The Act named a selected hardware and software provider, New Digital Finger, Ltd., for the creation of the new fingerprint system. Additionally, it stipulated that any of the professional clubs that failed to install this system within a two-year period would face fines under the Act. The Murla HB Club was the first to install the new system, renting the New Digital Finger hardware and software. Immediately afterward, the Murla HB Club automatically renewed current supporters' subscriptions, while introducing a new contractual clause requiring supporters to access specific areas of the hall through the new fingerprint reading system installed at the gates. After the first match hosted by the Murla HB Club, a local supporter submitted a complaint to the club and to the Spanish Data Protection Authority (the AEPD), claiming that the new access system violates EU data protection laws. Having been notified by the AEPD of the upcoming investigation regarding this complaint, the Murla HB Club immediately carried out a Data Protection Impact Assessment (DPIA), the conclusions of which stated that the new access system did not pose any high risks to data subjects' privacy rights. The Murla HB Club should have carried out a DPIA before the installation of the new access system and at what other time?

A.After the complaint of the supporter.

B. Periodically, when new risks were foreseen.

C. At the end of every match of the season.

D. After the AEPD notification of the investigation.

Correct Answer: B

Q3. Start-up company MagicAI is developing an AI system that will be part of a medical device that detects skin cancer. To take measures against potential bias in its AI system, the IT Team decides to collect data about users' ethnic origin, nationality, and gender. Which would be the most appropriate legal basis for this processing under the GDPR, Article 9 (Processing of special categories of personal data)?

A.Processing necessary for scientific or statistical purposes.

B. Processing necessary for reasons of substantial public interest.

C. Processing necessary for purposes of preventive or occupational medicine.

D. Processing necessary for the defense of legal claims in potential negligence cases.

Correct Answer: A

Q4. Since blockchain transactions are classified as pseudonymous, are they considered to be within the material scope of the GDPR, or outside of it?

A.Outside the material scope of the GDPR, because transactions do not include personal data about data subjects in the European Union.

B. Outside the material scope of the GDPR, because transactions are for personal or household purposes.

C. Within the material scope of the GDPR to the extent that transactions include data subjects in the European Union.

D. Within the material scope of the GDPR but outside of the territorial scope, because blockchains are decentralized.

Correct Answer: C

$59.00

Reviews

There are no reviews yet.

Be the first to review “IAPP CIPP-E Exam Dumps”

Your email address will not be published. Required fields are marked *