Question 1

An organization needs to be able to manipulate highly sensitive personal information without revealing the contents of the data to the users. The organization should investigate the use of?

Options :

A : Advanced Encryption Standard (AES)

B : Homomorphic encryption

C : Quantum encryption

D : Pseudonymization

Answer: B

Question 2

When analyzing user data, how is differential privacy applied?

Options :

A : By injecting noise into aggregated datasets.

B : By assessing differences between datasets.

C : By applying asymmetric encryption to datasets.

D : By removing personal identifiers from datasets.

Answer: A

Question 3

An organization based in California, USA is implementing a new online helpdesk solution for recording customer call information. The organization considers the capture of personal data on the online helpdesk solution to be in the interest of the company in best servicing customer calls.

Before implementation, a privacy technologist should conduct which of the following?

Options :

A : A Data Protection Impact Assessment (DPIA) and consultation with the appropriate regulator to ensure legal compliance.

B : A privacy risk and impact assessment to evaluate potential risks from the proposed processing operations.

C : A Legitimate Interest Assessment (LIA) to ensure that the processing is proportionate and does not override the privacy, rights and freedoms of the customers.

D : A security assessment of the help desk solution and provider to assess if the technology was developed with a security by design approach.

Answer: C

Question 4

One-way hash functions can be used is to?

Options :

A : Verify a password in a secure way.

B : Recover a credit card number at refund

C : Encrypt a document for confidentiality.

D : Secure an end-to-end communication.

Answer: A

Question 5

What has been found to undermine the public key infrastructure system?

Options :

A : Man-in-the-middle attacks.

B : Inability to track abandoned keys.

C : Disreputable certificate authorities.

D : Browsers missing a copy of the certificate authority-s public key.

Answer: C