Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home ISACA CDPSE

ISACA CDPSE Exam Practice Questions (P. 3)

  • Full Access (374 questions)
  • One Year of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
Which of the following vulnerabilities is MOST effectively mitigated by enforcing multi-factor authentication to obtain access to personal information?
  1. A
    End users using weak passwords
  2. B
    Organizations using weak encryption to transmit data
  3. C
    Vulnerabilities existing in authentication pages
  4. D
    End users forgetting their passwords

Correct Answer:
A

Question #22
Which of the following is the BEST way for an organization to limit potential data exposure when implementing a new application?
  1. A
    Implement a data loss prevention (DLP) system.
  2. B
    Use only the data required by the application.
  3. C
    Encrypt all data used by the application.
  4. D
    Capture the application’s authentication logs.

Correct Answer:
B

Question #23
An online business posts its customer data protection notice that includes a statement indicating information is collected on how products are used, the content viewed, and the time and duration of online activities. Which data protection principle is applied?
  1. A
    Data integrity and confidentiality
  2. B
    System use requirements
  3. C
    Data use limitation
  4. D
    Lawfulness and fairness

Correct Answer: C ?️

Question #24
What type of personal information can be collected by a mobile application without consent?
  1. A
    Full name
  2. B
    Geolocation
  3. C
    Phone number
  4. D
    Accelerometer data

Correct Answer: D ?️

Question #25
What is the PRIMARY means by which an organization communicates customer rights as it relates to the use of their personal information?
  1. A
    Distributing a privacy rights policy
  2. B
    Mailing rights documentation to customers
  3. C
    Publishing a privacy notice
  4. D
    Gaining consent when information is collected

Correct Answer:
C

Question #26
A new marketing application needs to use data from the organization’s customer database. Prior to the application using the data, which of the following should be done FIRST?
  1. A
    Ensure the data loss prevention (DLP) tool is logging activity.
  2. B
    De-identify all personal data in the database.
  3. C
    Determine what data is required by the application.
  4. D
    Renew the encryption key to include the application.

Correct Answer:
C

Question #27
Which of the following MUST be available to facilitate a robust data breach management response?
  1. A
    Lessons learned from prior data breach responses
  2. B
    Best practices to obfuscate data for processing and storage
  3. C
    An inventory of previously impacted individuals
  4. D
    An inventory of affected individuals and systems

Correct Answer: D ?️

Question #28
Which of the following zones within a data lake requires sensitive data to be encrypted or tokenized?
  1. A
    Trusted zone
  2. B
    Clean zone
  3. C
    Raw zone
  4. D
    Temporal zone

Correct Answer: C ?️

Question #29
Which of the following poses the GREATEST privacy risk for client-side application processing?
  1. A
    Failure of a firewall protecting the company network
  2. B
    An employee loading personal information on a company laptop
  3. C
    A remote employee placing communication software on a company server
  4. D
    A distributed denial of service attack (DDoS) on the company network

Correct Answer:
B

Question #30
Which of the following is the PRIMARY consideration to ensure control of remote access is aligned to the privacy policy?
  1. A
    Access is logged on the virtual private network (VPN).
  2. B
    Multi-factor authentication is enabled.
  3. C
    Active remote access is monitored.
  4. D
    Access is only granted to authorized users.

Correct Answer:
D

Previous Questions Next Questions

All Pages