Certified Data Privacy Solutions Engineer (CDPSE) Free Practice Test

Question 1

Which of the following helps define data retention time is a stream-fed data lake that includes personal data?

A. Data lake configuration

B. Data privacy standards

C. Privacy impact assessments (PIAs)

D. Information security assessments

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 2

Which of the following is MOST important when developing an organizational data privacy program?

A. Performing an inventory of all data

B. Obtaining approval from process owners

C. Following an established privacy framework

D. Profiling current data use

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

An organization has initiated a project to enhance privacy protections by improving its information security controls. Which of the following is the MOST useful action to help define the scope of the project?

A. Review proposed privacy rules that govern the processing of personal data

B. Identify databases that do not have encryption in place.

C. Review recent audit reports on the internal control environment

D. Identify databases that contain personal data

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 4

Which of the following information would MOST likely be considered sensitive personal data?

A. Mailing address

B. Ethnic origin

C. Bank account login ID

D. Contact phone number

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 5

Which of the following zones within a data lake requires sensitive data to be encrypted or tokenized?

A. Trusted zone

B. Raw zone

C. Temporal zone

D. Clean zone

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 6

Which of the following is MOST important to ensure when developing a business case for the procurement of a new IT system that will process and store personal information?

A. A risk assessment has been completed.

B. The system architecture is clearly defined.

C. Security controls are clearly defined.

D. Data protection requirements are included.

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 7

Which of the following is the BEST way to address threats to mobile device privacy when using beacons as a tracking technology?

A. Disable Bluetooth services.

B. Enable Trojan scanners.

C. Enable antivirus for mobile devices.

D. Disable location services.

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 8

Which of the following should be established FIRST before authorizing remote access to a data store containing personal data?

A. Multi-factor authentication

B. Privacy policy

C. Network security standard

D. Virtual private network (VPN)

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 9

Which of the following is the GREATEST privacy risk associated with the use of application programming interfaces (APIs)?

A. APIs are costly to assess and monitor.

B. APIs are complex to build and test

C. API keys could be stored insecurely.

D. APIS could create an unstable environment

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 10

Which of the following BEST ensures an effective data privacy policy is implemented?

A. Developing a clear privacy statement with documented objectives

B. Providing a comprehensive review of the policy for all business units

C. Aligning regulatory requirements with business needs

D. Incorporating data privacy regulations from all jurisdictions

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 11

Which of the following is the MOST important consideration when using advanced data sanitization methods to ensure privacy data will be unrecoverable?

A. Subject matter expertise

B. Location of data

C. Regulatory compliance requirements

D. Type of media

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 12

A privacy risk assessment identified that a third-party collects personal data on the organization's behalf. This finding could subject the organization to a regulatory fine for not disclosing this relationship. What should the organization do NEXT?

A. Amend the privacy policy to include a provision that data might be collected by trusted third parties.

B. Disclose the relationship to those affected in jurisdictions where such disclosures are required.

C. Update the risk assessment process to cover only required disclosures.

D. Review the third-party relationship to determine who should be collecting data.

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 13

Which of the following is MOST important to include in a data use policy?

A. The length of time personal data will be retained

B. The reason for collecting and using personal data

C. The requirements for collecting and using personal data

D. The method used to delete or destroy personal data

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Welcome to TestSimulate

ISACA Certified Data Privacy Solutions Engineer (CDPSE) Free Practice Test