Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Exin Exam PDPF Topic 9 Question 51 Discussion

Actual exam question for Exin's PDPF exam
Question #: 51
Topic #: 9
[All PDPF Questions]

A company CEO travels to a meeting in another city. He takes a notebook with information about the company's new projects and acquisitions, which will be the subject of discussion at this meeting. These are the only data stored on the notebook.

The notebook accidentally falls into the hotel's pool and all data is lost.

What happened, considering the General Data Protection Regulation (GDPR)?

Show Suggested Answer Hide Answer
Suggested Answer: A

To advise the controller on the mitigation of privacy risks to protect the controller from liability claims for non-compliance. Incorrect. The supervisory authority has the task to monitor compliance and to advise on enhancements, but its purpose is not to protect the controller.

To fulfill the obligation in the GDPR to implement appropriate technical and organizational measures for data protection. Incorrect. The audit is not the implementation of the measures, but an assessment of the effectiveness of them.

To monitor and enforce the application of the GDPR by assessing that processing is performed in compliance with the GDPR. Correct. According to the GDPR this is an important task of a supervisory authority. (Literature: A, Chapter 7; GDPR Article 57 (1)(a))


by Matthew at Dec 10, 2023, 03:51 PM

Limited Time Offer

25%

Off

Get Premium PDPF Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Mickie
Hmm, I'm not sure. Could it also be considered a vulnerability in the company's data security practices? Maybe option B is a valid answer too.
upvoted 0 times
...
Shaun
6 days ago
I agree, this is a security incident. The data on the notebook was not properly secured, which led to a data breach. Option C is the right choice here.
upvoted 0 times
...
Eden
10 days ago
But couldn't it also be considered a security incident since the CEO failed to protect the data properly?
upvoted 0 times
...
Gwenn
12 days ago
I agree with Willie, losing sensitive company information like that definitely falls under GDPR as a data breach.
upvoted 0 times
...
Willie
15 days ago
I think it's a data breach.
upvoted 0 times
...
Ernie
19 days ago
But couldn't it also be considered a security incident since the CEO failed to protect the data properly?
upvoted 0 times
...
Jerry
20 days ago
This is definitely a security incident under GDPR. The CEO's notebook containing sensitive company information was lost, and the data is now compromised. Option A is the correct answer.
upvoted 0 times
...
Lashaunda
21 days ago
I agree with Solange, losing sensitive company information like that definitely falls under GDPR as a data breach.
upvoted 0 times
...
Solange
22 days ago
I think it's a data breach.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77