Question 1

In jurisdictions where children are legally protected online, privacy controls should be implemented in each of the following situations EXCEPT?

Options :

A : A virtual jigsaw puzzle game marketed for ages 5-9 displays pieces of the puzzle on a handheld screen. Once the child completes a certain level, it flashes a message about new themes released that day.

B : A child logs in to a system to use an interactive toy that copies the child’s behavior through gestures and kid-friendly sounds.

C : A math tutoring service commissioned an advertisement on a bulletin board inside a school. The service makes it simple for children to reach out to tutors by entering a through a QR-code through their school account.

D : A note-taking application converts hard copies of kids’ class notes into audio books in seconds and stores a copy in the cloud in the students’ account.

Answer: C

Question 2

What must be done to destroy data stored on "write once read many" (WORM) media?

Options :

A : The data must be made inaccessible by encryption.

B : The erase function must be used to remove all data.

C : The media must be physically destroyed.

D : The media must be reformatted.

Answer: C

Question 3

What is the name of an alternative technique to counter the reduction in use of third-party cookies, where web publishers may consider utilizing data cached by a browser and returned with a subsequent request from the same resource to track unique users?

Options :

A : Web beacon tracking.

B : Browser fingerprinting.

C : Entity tagging.

D : Canvas fingerprinting.

Answer: B

Question 4

An EU marketing company is planning to make use of personal data captured to make automated decisions based on profiling. In some cases, processing and automated decisions may have a legal effect on individuals, such as credit worthiness.

When evaluating the implementation of systems making automated decisions, in which situation would the company have to accommodate an individual's right NOT to be subject to such processing to ensure compliance under the General Data Protection Regulation (GDPR)?

Options :

A : When an individual-s legal status or rights are not affected by the decision.

B : When there is no human intervention or influence in the decision-making process.

C : When the individual has given explicit consent to such processing and suitable safeguards exist.

D : When the decision is necessary for entering into a contract and the individual can contest the decision.

Answer: D

Question 5

What was the first privacy framework to be developed?

Options :

A : OECD Privacy Principles.

B : Generally Accepted Privacy Principles.

C : Code of Fair Information Practice Principles (FIPPs).

D : The Asia-Pacific Economic Cooperation (APEC) Privacy Framework.

Answer: C