APEC privacy framework envisages common principles such as Notice, Collection limitation, Use Limitation, Access and Correction, Security/Safeguards, and Accountability. But it differs from the EU Data Protection Directive in which of the below aspect?

A. APEC privacy framework does not deal with the usage of personal information

B. APEC privacy framework does not mandate the binding treaties or directives for member countries

C. APEC privacy framework does not have a provision for co-operation between privacy enforcement agencies of members

D. APEC privacy framework does not deal with e-commerce

`Challenging Compliance' as a privacy principle is covered in which of the following data protection/ privacy act?

A. Federal Data Protection Act, Germany

B. UK Data Protection Act

C. PIPEDA

D. Singapore Data Protection Act

Select the element(s) of APEC cross border privacy rules system from the following list:

i. self-assessment

ii. compliance review

iii. recognition/acceptance by APEC members

iv. dispute resolution and enforcement

Please select correct option:

A. i, ii and iii

B. ii, iii, and iv

C. i, iii and iv

D. i, ii, iii and iv

Which of the following legislations/ guidelines do not cover the concept of trans-border data flow?

A. OECD

B. IT (Amendment) Act, 2008

C. PIPEDA

D. None of the above

Which of the following laws does not have a mandatory personal data breach notification requirement?

A. General Data Protection Regulation, 2016

B. Information Technology (Amendment) Act, 2008

C. Japanese Act on the Protection of Personal Information

D. UK Data Protection Act, 2018

The term "Data Handlers" is synonymous with which of the following privacy legislations?

A. South Korea's Personal Information Protection Act

B. Digital Privacy Act, 2015

C. Federal Data Protection Act, Germany (BDSG)

D. Child online protection Act, 1998

What are the roles an organization can play from privacy perspective?

i. Data Controller – determines the means and purpose of processing of data which is collected from its end customers

ii. Data Controller – determines the means and purpose of processing of data which is collected from its employees

iii. Data Sub-Processor – processes personal data on behalf of data processor

iv. Joint Controller – determines the means and purpose of data processing along with other data controller

Please select correct option:

A. i, ii and iii

B. ii, iii and iv

C. i, iii and iv

D. i, ii, iii and iv

Choose the correct statement:

Projects like DNA profiling, UIDAI, collection of individual's statistics, etc.

A. Are executed with a sole aim to ensure that privacy of individuals is maintained

B. Have been initiated to provide services to citizens for maintaining their online privacy only

C. Have raised the need for a comprehensive privacy legislation at national level

D. Have enforced a privacy legislation at national level

_______________ calls for inclusion of data protection from the onset of the designing of systems.

A. Privacy Safeguarding

B. Agile Model

C. Privacy by Design

D. Logical Design

____________ is used to identify and reduce privacy risks by analyzing that is processed by the entity and the policies in place to protect the data.

A. Privacy Impact Assessment

B. Anonymization

C. Threat Hunting

D. Minimization