Most Recent IAPP CIPP-A Exam Questions & Answers

Prepare for the IAPP Certified Information Privacy Professional/Asia exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the IAPP CIPP-A exam and achieve success.

The questions for CIPP-A were last updated on Nov 16, 2024.

Viewing page 1 out of 18 pages.
Viewing questions 1-5 out of 90 questions

Get All 90 Questions & Answers

Question No. 1

Which of the following is NOT excluded from the scope of Singapore's Do Not Call registry?

AMessages that promote investment opportunities.

BMessages that conduct market research.

CMessages from charitable organizations.

DMessages from political candidates.

Show Answer

Correct Answer: B

Question No. 2

SCENARIO -- Please use the following to answer the next QUESTION:

Fitness For Everyone ("FFE") is a gym on Hong Kong Island that is affiliated with a network of gyms throughout Southeast Asi

a. When prospective members of the gym stop in, call in or submit an inquiry online, they are invited for a free trial session. At first, the gym asks prospective clients only for basic information: a full name, contact number, age and their Hong Kong ID number, so that FFE's senior trainer Kelvin can reach them to arrange their first appointment.

One day, a potential customer named Stephen took a tour of the gym with Kelvin and then decided to join FFE for six months. Kelvin pulled out a registration form and explained FFE's policies, placing a circle next to the part that read "FEE and affiliated third parties" may market new products and services using the contact information provided on the form to Stephen "for the duration of his membership." Stephen asked if he could opt-out of the marketing communications. Kelvin shrugged and said that it was a standard part of the contract and that most gyms have it, but that even so Kelvin's manager wanted the item circled on all forms. Stephen agreed, signed the registration form at the bottom of the page, and provided his credit card details for a monthly gym fee. He also exchanged instant messenger/cell details with Kelvin so that they could communicate about personal training sessions scheduled to start the following week.

After attending the gym consistently for six months, Stephen's employer transferred him to another part of the Island, so he did not renew his FFE membership.

One year later, Stephen started to receive numerous text messages each day from unknown numbers, most marketing gym or weight loss products.

Suspecting that FFE shared his information widely, he contacted his old FFE branch and asked reception if they still had his information on file. They did, but offered to delete it if he wished. He was told FFE's process to purge his information from all the affiliated systems might take 8 to 12 weeks. FFE also informed him that Kelvin was no longer employed by FFE and had recently started working for a competitor. FFE believed that Kelvin may have shared the mobile contact details of his clients with the new gym, and apologized for this inconvenience.

Which of the following types of text messages are permissible, regardless of Stephen's withdrawal of consent?

AFrom the FFE retention department, offering a special discount for reactivating membership.

BFrom health care services provided by Hong Kong's Hospital Authority or Department of Health.

CFrom an FFE affiliate that provides a mechanism to opt out of further communications by reply-texting 'OO.'

DFrom an FFE affiliate in the region Stephen was transferred to, offering services similar to those he purchased previously.

Show Answer

Correct Answer: C

Question No. 3

A Singapore employer can do all of the following without obtaining an employee's consent EXCEPT?

AShare an employee's personal data with a company that provides financial planning.

BDisclose personal health data to a public agency during a health crisis.

CUse computer monitoring software on an employee's computers.

DUse closed-circuit television surveillance in the workplace.

Show Answer

Correct Answer: A

Question No. 4

All of the following are exempt from Section 43A of India's IT Rules 2011 EXCEPT?

ACharitable groups.

BSole proprietorships.

CGovernment agencies.

DReligious organizations.

Show Answer

Correct Answer: C

Question No. 5

Which control is NOT included in the requirements established by the Monetary Authority of Singapore (MAS) for financial institutions in order to deter money-laundering and financial aid to terrorism (AML/CFT)?

AIdentifying and knowing customers.

BSharing personal information with the PDPC.

CConducting regular reviews of customer accounts.

DMonitoring and reporting suspicious financial transactions.

Show Answer

Correct Answer: A

https://www.mas.gov.sg/-/media/MAS/Regulations-and-Financial-Stability/Regulatory-and-Supervisory-Framework/Anti_Money-Laundering_Countering-the-Financing-of-Terrorism/Guidance-for- Effective-AML-CFT-Transaction-Monitoring-Controls.pdf (page 3)

Unlock All Questions for IAPP CIPP-A Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 90 Questions & Answers