A team created by the Indian government has been assigned to create India's privacy law based on Justice AP Shah's recommendations. Is any of the following legislation necessary?
As a privacy assessor, what would most likely be the first artifact you would ask for while assessing an organization which claims that it has implemented a privacy program?
Which of the following does not fall under the category of Sensitive Personal Data or Information as defined in the Information Technology (Reasonable Security Practices and Procedures and Sensitive Data or Information) Rules, 2011?
With respect to privacy notice, what are the responsibilities of data controller?
From the following list, identify the technology aspects that are specially designed for upholding the privacy:
i. Data minimization
ii. Intrusion prevention system
iii. Data scrambling
iv. Data loss prevention
v. Data portability
vi. Data obfuscation
vii. Data encryption
viii. Data mirroring
Please select the correct set of aspects from below options:
How soon after becoming aware of the breach the data controller has to notify the supervisory authority under Article 33 of GDPR.
When you're based in the EU and willing to share data outside the EU/EEA, then you can use model contracts. In reference to the above statement, which of the following is true?
Health insurance firm based in the US uses BPM services provided by an Indian company. It was found that one of the employees of the Indian company exported customer data of the insurance company to another US-based insurance company. Under which of the below ground, the company and its executives in India were also subjected to legal action ?
The Qatar Concerning Privacy and Protection of Personal Data Act, 2016 addresses different types of personal data, including:
Which of the following are needed for projects like DNA profiling, UIDAI, and statistical collection of individuals ?
