DSCI DCPP-01 Exam Practice Questions (P. 4)

After the rules were notified under section 43A of the IT (Amendment) Act, 2008, a clarification was issued by the government which exempted the service providers, which get access to/processes Sensitive Personal Data or information (SPDI) under contractual agreement with a legal entity located within or outside India.
Which privacy principle provisions notified under Sec 43A were exempted for the service providers?

Select the element(s) of APEC cross border privacy rules system from the following list: i. self-assessment ii. compliance review iii. recognition/acceptance by APEC members iv. dispute resolution and enforcement
Please select correct option:

A ministry under government of India plans to collect citizens’ information related to their education, medical condition, economic status, caste and religion. As per the privacy requirements mentioned under Sec 43A of IT (Amendment) Act, 2008, the citizens’ ‘Consent’ would be mandatory for which of the following elements before their collection?

Which of the following legislations/ guidelines do not cover the concept of trans-border data flow?

XYZ is a successful startup that acquired a respectable size & scale of operations in last 3 years, handling business process services for small & medium scale enterprises, largely in US & Europe. They are at the stage of closing a deal with a new banking client and working out the details of privacy related obligations in contract. Ensuring effective enforcement of which of the below listed privacy principles is client’s accountability, even after outsourcing its loan approval process to XYZ?

I: Notice -

II: Choice and Consent -

III: Collection Limitation -

IV: Use Limitation -

V: Access and Correction -

VI: Security -

VII: Disclosure to third Party -
Please select the correct set of principles from below listed options: