Join the discussion
Question 1/82
Under Article 21 of the GDPR, a controller must stop profiling when requested by a data subject, unless it can demonstrate compelling legitimate grounds that override the interests of the individual. In the Guidelines on Automated individual decision-making and Profiling, the WP 29 says the controller needs to do all of the following to demonstrate that it has such legitimate grounds EXCEPT?
Correct Answer: D
Add Comments
- Other Question (82q)
- Q1. Under Article 21 of the GDPR, a controller must stop profiling when requested by a data su...
- Q2. When a third country or specified entity is said to ensure an adequate level of protection...
- Q3. What is the main purpose of the CAN-SPAM Act?
- Q4. Which entities must comply with the Telemarketing Sales Rule?...
- Q5. A commercial business in Canada is allowed to collect personal information without the kno...
- Q6. When would a data subject NOT be able to exercise the right to portability?...
- Q7. SCENARIO Please use the following to answer the next question: Building Block Inc. is a mu...
- Q8. Which jurisdiction must courts have in order to hear a particular case?...
- Q9. How did the Fair and Accurate Credit Transactions Act (FACTA) amend the Fair Credit Report...
- Q10. SCENARIO Please use the following to answer the next QUESTION When there was a data breach...
- Q11. Which organization was the primary influence in the development of Canadian privacy with t...
- Q12. What is the Canadian Courts' role in reviewing decisions by provincial oversight authoriti...
- Q13. All of the following common law torts are relevant to employee privacy under US law EXCEPT...
- Q14. SCENARIO Please use the following to answer the next question: Joe is the new privacy mana...
- Q15. Which type of personal data does the GDPR define as a "special category" of personal data?...
- Q16. According to FERPA, when can a school disclose records without a student's consent?...
- Q17. As response to TJX Winners - Homesense, why is "hashing" preferable to storing a personal ...
- Q18. Which action is prohibited under the Electronic Communications Privacy Act of 1986?...
- Q19. WP29's "Guidelines on Personal data breach notification under Regulation 2016/679'' provid...
- Q20. What was the original purpose of the Foreign Intelligence Surveillance Act?...
- Q21. According to the FTC Report of 2012, what is the main goal of Privacy by Design?...
- Q22. SCENARIO Please use the following to answer the next question: Zandelay Fashion ('Zandelay...
- Q23. SCENARIO Please use the following to answer the next QUESTION: Matt went into his son's be...
- Q24. A company wants to invest in DEI initiatives within their organization and plans to survey...
- Q25. SCENARIO Please use the following to answer the next QUESTION: A US-based startup company ...
- Q26. An organization self-certified under Privacy Shield must, upon request by an individual, d...
- Q27. What important action should a health care provider take if the she wants to qualify for f...
- Q28. SCENARIO Please use the following to answer the next QUESTION: You are the chief privacy o...
- Q29. Read the following steps: * Discover which employees are accessing cloud services and from...
- Q30. What is the main purpose of requiring marketers to use the Wireless Domain Registry?...
- Q31. What is critical to consider when an organization responsible for a large number of record...
- Q32. A company in France suffers a robbery over the weekend owing to a faulty alarm system. Whe...
- Q33. Oversight authorities allow the following types of consent EXCEPT?...
- Q34. What should a controller do after a data subject opts out of a direct marketing activity?...
- Q35. With respect to international transfers of personal data, the European Data Protection Boa...
- Q36. All items below could be considered sensitive personal information, EXCEPT?...
- Q37. Under state breach notification laws, which is NOT typically included in the definition of...
- Q38. Oversight authorities allow the following types of consent EXCEPT?...
- Q39. Which statement is TRUE regarding health information privacy laws in Canada?...
- Q40. What can be concluded from the Blood Tribe case regarding the Privacy Commissioner's acces...
- Q41. According to the Alberta Personal Information Protection Act, which of the following data ...
- Q42. What information did the Red Flag Program Clarification Act of 2010 add to the original Re...
- Q43. Safeguarding and securing information that is considered sensitive under privacy legislati...
- Q44. To whom does the Privacy Commissioner of Canada report?...
- Q45. John, a California resident, receives notification that a major corporation with $500 mill...
- Q46. Privacy Is Hiring Inc., a CA-based company, is an online specialty recruiting firm focusin...
- Q47. SCENARIO Please use the following to answer the next question: Brady is a computer program...
- Q48. Which of the following is NOT a principle found in the APEC Privacy Framework?...
- Q49. A private sector daycare's portal for parents stores their children's photos, allergy info...
- Q50. SCENARIO Please use the following to answer the next question: Liem, an online retailer kn...
- Q51. What do the Civil Rights Act, Pregnancy Discrimination Act, Americans with Disabilities Ac...
- Q52. What must happen before an individual requester can commence a court application relating ...
- Q53. What must be included in a written agreement between the controller and processor in relat...
- Q54. What practice does the USA FREEDOM Act NOT authorize?...
- Q55. What is the main reason a country might adopt an "ombudsman" model of privacy oversight?...
- Q56. Which GDPR principle would a Spanish employer most likely depend upon to annually send the...
- Q57. Which authority supervises and enforces laws regarding advertising to children via the Int...
- Q58. Which province requires its government bodies to store and access personal information exc...
- Q59. An Alberta resident has signed up for a health wellness "app" developed by a British Colum...
- Q60. Which sentence BEST summarizes the concepts of "fairness," "lawfulness" and "transparency"...
- Q61. SCENARIO Please use the following to answer the next QUESTION When there was a data breach...
- Q62. Which of the following would NOT constitute an exception to the authorization requirement ...
- Q63. Why was the Privacy Protection Act of 1980 drafted?...
- Q64. SCENARIO Please use the following to answer the next question: T-Craze, a German-headquart...
- Q65. Under PIPEDA, each of the following situations requires an organization to obtain express ...
- Q66. A small commercial business in Canada was preparing a mailing to its customers when the le...
- Q67. What is the MAIN reason GDPR Article 4(22) establishes the concept of the "concerned super...
- Q68. Although an employer may have a strong incentive or legal obligation to monitor employees'...
- Q69. SCENARIO WebTracker Limited is a cloud-based online marketing service located in London. L...
- Q70. SCENARIO Please use the following to answer the next question: Louis, a long-time customer...
- Q71. SCENARIO Tom looked forward to starting his new position with a U.S -based automobile leas...
- Q72. Which is an exception to the general prohibitions on telephone monitoring that exist under...
- Q73. SCENARIO Please use the following to answer the next question: WonderkKids provides an onl...
- Q74. In 2014, Google was alleged to have violated the Family Educational Rights and Privacy Act...
- Q75. SCENARIO Please use the following to answer the next question: Louis, a long-time customer...
- Q76. SCENARIO Please use the following to answer the next QUESTION Noah is trying to get a new ...
- Q77. Read this notice: Our website uses cookies. Cookies allow us to identify the computer or d...
- Q78. What is the consequence if a processor makes an independent decision regarding the purpose...
- Q79. According to the federal Privacy Commissioner, what protection is missing from the Privacy...
- Q80. Which of the following best describes the ASIA-Pacific Economic Cooperation (APEC) princip...
- Q81. Which of the following would MOST likely trigger the extraterritorial effect of the GDPR, ...
- Q82. In Ontario, personal information can be withheld from disclosure in a Freedom of Informati...
