CIPP-US Practice Online

Question 1

What privacy concept grants a consumer the right to view and correct errors on his or her credit report?

A : Access

B : Notice

C : Action

D : Choice

Answer: B

Question 2

Which of the following is most likely to provide privacy protection to private-sector employees in the United States?

A : State law, contract law, and tort law

B : The Federal Trade Commission Act (FTC Act)

C : Amendments one, four, and five of the U.S. Constitution

D : The U.S. Department of Health and Human Services (HHS)

Answer: A

Question 3

Which of the following describes the most likely risk for a company developing a privacy policy with standards that are much higher than its competitors?

A : Being more closely scrutinized for any breaches of policy

B : Getting accused of discriminatory practices

C : Attracting skepticism from auditors

D : Having a security system failure

Answer: A

Question 4

Edward Snowden’s revelations regarding government programs collecting massive amounts of information about U.S. citizens and noncitizens led to the passage of which law?

A : Cybersecurity Information Sharing Act of 2015

B : Foreign Intelligence Surveillance Act

C : USA FREEDOM Act

D : CLOUD Act

Answer: C

Question 5

SCENARIO

Please use the following to answer the next question:

Jane is a U.S. citizen and a senior software engineer at California-based Jones Labs, a major software supplier

to the U.S. Department of Defense and other U.S. federal agencies. Jane's manager, Patrick, is a French

citizen who has been living in California for over a decade. Patrick has recently begun to suspect that Jane is

an insider secretly transmitting trade secrets to foreign intelligence. Unbeknownst to Patrick, the FBI has

already received a hint from anonymous whistleblower, and jointly with the National Security Agency is

investigating Jane's possible implication in a sophisticated foreign espionage campaign.

Ever since the pandemic, Jane has been working from home. To complete her daily tasks she uses her

corporate laptop, which after each login conspicuously provides notice that the equipment belongs to Jones

Labs and may be monitored according to the enacted privacy policy and employment handbook. Jane also has

a corporate mobile phone that she uses strictly for business, the terms of which are defined in her employment

contract and elaborated upon in her employee handbook. Both the privacy policy and the employee handbook

are revised annually by a reputable California law firm specializing in privacy law. Jane also has a personal

iPhone that she uses for private purposes only.

Jones Labs has its primary data center in San Francisco, which is managed internally by Jones Labs engineers.

The secondary data center, managed by Amazon AWS, is physically located in the UK for disaster recovery

purposes. Jones Labs' mobile devices backup is managed by a mid-sized mobile defense company located in

Denver, which physically stores the data in Canada to reduce costs. Jones Labs MS Office documents are

securely stored in a Microsoft Office 365 data center based in Ireland. Manufacturing data of Jones Labs is

stored in Taiwan and managed by a local supplier that has no presence in the U.S.

When storing Jane's fingerprint for remote authentication. Jones Labs should consider legality issues under

which of the following?

A : The Privacy Rule of the HITECH Act.

B : The California IoT Security Law (SB 327).

C : The applicable state law such as Illinois BIPA.

D : The federal Genetic Information Nondiscrimination Act (GINA).

Answer: C

Name:	Certified Information Privacy Professional/United States (CIPP/US)
Exam Code:	CIPP-US
Certification:	IAPP Certification Programs
Vendor:	IAPP
Total Questions:	201
Last Updated:	Apr 22, 2024

Download Demo CIPP-US Dumps

Create Account

Password Recovery

CIPP-US Practice Online

Download Demo CIPP-US Dumps

Member Login

Create Account

Password Recovery

CIPP-US Practice Online