Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Community
Ask the community for help and clear up your study doubts
Discover the best universities in your country according to Docsity users
Free resources
Download our free guides on studying techniques, anxiety management strategies, and thesis advice from Docsity tutors
CIPP US Practice Exam Questions With 100% Correct Answers 2024 What kind of liability may only be asserted in court by governmental authorities and not by a private citizen? A. Civil B. Negligence C. Criminal D. Invasion of privacy - Correct Answer-C Which of the following preemployment screening activities would turn a regular consumer report into an investigative report? A. The report includes information about prior bankruptcies. B. The CRA furnishing the report includes information about a job seeker's mortgage payments. C. The preemployment screening includes a criminal background check. D. A third‐party agent interviews a job seeker's neighbors about their character. - Correct Answer-D Dana is frustrated because she continues to receive telemarketing calls from her current internet service provider (ISP), even though she added her number to the national do‐not‐call list. Is Dana's ISP breaking the law?
Typology: Exams
1 / 86
What kind of liability may only be asserted in court by governmental authorities and not by a private citizen? A. Civil B. Negligence C. Criminal D. Invasion of privacy - Correct Answer-C Which of the following preemployment screening activities would turn a regular consumer report into an investigative report? A. The report includes information about prior bankruptcies. B. The CRA furnishing the report includes information about a job seeker's mortgage payments. C. The preemployment screening includes a criminal background check. D. A third party agent interviews a job seeker's neighbors ‐ about their character. - Correct Answer-D
Dana is frustrated because she continues to receive telemarketing calls from her current internet service provider (ISP), even though she added her number to the national do ‐ not call list. Is Dana's ISP breaking the law? ‐ A. Yes, because it is the responsibility of the ISP to maintain an updated copy of the national do not call registry. ‐ ‐ B. No, because she is a customer of the ISP and the TSR provides an exemption for firms that have an existing business relationship with a consumer. C. No, because Dana's ISP may not know she has added her number to the do not call registry. ‐ ‐ D. Yes, because the DNC does not provide an exemption for existing customers. - Correct Answer-B Nick and Jenny often meet with other employees in the company cafeteria to advocate for collective bargaining. One day, Jenny notices that a security camera has suddenly been installed in the cafeteria, near where they usually sit. Why might this be a problem? A. Employees have not consented to video surveillance during their lunch hours when not conducting company business. B. Video surveillance may inadvertently reveal an employee's physical disability and lead to compliance risks under the Americans with Disabilities Act (ADA).
C. The company did not post adequate signage to notify the employees of the new video surveillance system. D. The NLRB may view the security camera as an attempt to intimidate employees engaging in unionizing activities. - Correct Answer-D Gary's firm was recently sued by an athlete who claimed that the firm used his picture in marketing materials without permission. What type of claim was brought against Gary's firm? A. False light B. Appropriation C. Invasion of solitude D. Public disclosure of private facts - Correct Answer-B Which one of the following statements about workforce privacy training is incorrect? A. Computer based training is an acceptable training option. ‐ B. Training should include content on specific regulatory requirements. C. Training should include details on an individual's role in minimizing privacy risks.
D. Every user should receive the same level of training. - Correct Answer-D Which one of the following categories would include any information that uniquely identifies an individual person? A. PII B. PHI C. PFI D. PCI - Correct Answer-A Carla is building an inventory of the information maintained by her organization that should be considered within the scope of its privacy program. Which one of the following types of information would not normally be included? A. Customer transaction records B. Manufacturing work order records C. Employee payroll records D. Job candidate application records - Correct Answer-B 1Which of the following laws was primarily intended to help combat money laundering? A. RFPA
D. EPCA - Correct Answer-C What term is used to describe a voluntary agreement between a firm and the federal government where the firm agrees to engage or not engage in certain business practices? A. Conviction B. Retainer agreement C. Theory of liability D. Consent decree - Correct Answer-D What article in the U.S. Constitution defines the powers of the judicial branch? A. Article I B. Article II C. Article III D. Article IV - Correct Answer-C
What federal privacy law contains specific requirements for how organizations must dispose of sensitive personal information when it is no longer needed? A. FERPA B. FACTA C. GLBA D. SOX - Correct Answer-B What individual within an organization is likely to bear overall responsibility for a privacy program? A. CIO B. CFO C. CPO D. CEO - Correct Answer-C Tom recently filled out a survey about his political and religious views. The survey data is maintained by a nonprofit research organization. What term best describes Tom's role with respect to this data? A. Data controller B. Data processor C. Data steward
D. Data subject - Correct Answer-D It is probably permissible to use a polygraph test in preemployment screening for all of the following jobs, except: A. U.S. Treasury employee B. Daycare worker C. Armored car driver D. Pharmacist - Correct Answer-B Which one of the following firms was sanctioned by the Federal Trade Commission (FTC) after an investigation showed that they were not diligently carrying out privacy program recertifications of their clients? A. Snapchat B. Nomi C. TRUSTe D. GeoCities - Correct Answer-C The Washington State Biometric Privacy Law protects all of the following forms of biometric data except: A. Fingerprint
B. Eye retinas C. Voiceprint D. Photographs - Correct Answer-D H. Which one of the following is an example of a check and ‐ ‐ balance held by the executive branch of government? A. Power of the purse B. Veto C. Confirmation D. Judicial review - Correct Answer-B Why are antidiscrimination laws relevant to workplace privacy? A. Pro privacy lawmakers have used large antidiscrimination ‐ legislation as an opportunity to include unrelated privacy regulations. B. Antidiscrimination laws require employers to collect personal data on employees to prove they have diverse workforces.
C. Antidiscrimination laws require large employers to conduct surveillance of employees to prevent discrimination. D. Personal data about workers may be used in discriminatory decision making. - Correct Answer-D Which of the following is not likely to appear as a state breach notification requirement? A. Notifications to the three major CRAs to monitor for identity theft B. Notification to state regulators about individuals affected in their state C. A notification to the families of victims to warn them of potential identity fraud D. Notice to local media outlets, in case all affected individuals cannot be contacted. - Correct Answer-C
D. Consensual jurisdiction - Correct Answer-A
B. Breach of duty C. Causation D. Damages - Correct Answer-D
A. Supreme Court B. U.S. Circuit Court C. U.S. Trial Court D. U.S. District Court - Correct Answer-D
A. Establishment clause B. Supremacy clause C. Commerce clause D. Incompatibility clause - Correct Answer-B
A. U.S. District Court B. State Supreme Courts C. U.S. Supreme Court D. Foreign Intelligence Surveillance Court - Correct Answer-D
A. Monthly B. Semiannually C. Annually D. Biannually - Correct Answer-C
D. Security - Correct Answer-C
A. Management B. Board of directors C. Regulators D. All of the above - Correct Answer-D
B. Gap analysis C. Business analysis D. Authorization analysis - Correct Answer-B
A. Organizations should design systems to respond to privacy lapses that occur. B. Privacy should be treated as requiring trade offs with ‐ business objectives. C. Organizations should strictly limit the disclosure of their privacy practices. D. Privacy should be embedded into design. - Correct Answer- D
B. De identification ‐ C. Aggregation D. Redaction - Correct Answer-C