Summer Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: buysanta

Exact2Pass Menu

Certified Information Privacy Professional/ Canada (CIPP/C)

Last Update 5 hours ago Total Questions : 76

The Certified Information Privacy Professional/ Canada (CIPP/C) content is now fully updated, with all current exam questions added 5 hours ago. Deciding to include CIPP-C practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our CIPP-C exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these CIPP-C sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any Certified Information Privacy Professional/ Canada (CIPP/C) practice test comfortably within the allotted time.

Question # 11

What is critical to consider when an organization responsible for a large number of records wants to outsource the storage of those records?

A.

Determining if the personal information stored on the records will be used for data matching

B.

Putting into place a contractual agreement between the organization and the records storage company.

C.

Conducting a Privacy Impact Assessment (PIA) prior to establishing a relationship with the storage company.

D.

Establishing that consent gathered from individuals by the organization in order to store their personal information was informed and meaningful.

Question # 12

In comparing British Columbia’s privacy laws with the health information privacy acts of the remaining provinces, BC’s privacy laws?

A.

Seek to create a more flexible regulatory system to manage the patient data itself

B.

Refer to health sector participants as trustees as opposed to custodians.

C.

Exclude laboratories, nursing homes and independent health facilities.

D.

Group data banks together rather than listing them separately.

Question # 13

The process of de-identification where new data elements are substituted for identifying information is?

A.

Shuffling.

B.

Encryption.

C.

Anonymization.

D.

Pseudonymization.

Question # 14

In Ontario, a patient attends an appointment with a physician and reveals information about some new symptoms that she has been experiencing. Based on this information, the physician diagnoses the patient with a condition and prepares the report detailing the applicable history and diagnosis. The report is added to the patient’s record. The patient later regrets revealing certain facts and doesn’t want anyone else to know about these symptoms or the diagnosis. She acknowledges that the information she provided was correct and does not question the diagnosis.

Which of the following requests would the patient be most successful at pursuing?

A.

That a correction be made to change the diagnosis based on the patient ' s wishes.

B.

That the information be restricted from disclosure to other health care providers.

C.

That a copy of the record be kept by the patient for disclosure to physicians.

D.

That details of the diagnosis be deleted from the patient’s health record.

Question # 15

According to the Voluntary Code of Conduct on the Responsible Development and Management of Advanced Generative AI Systems, signatories commit to doing all of the following EXCEPT?

A.

Contributing to the development and application of Al standards.

B.

Sharing information and best practices of Al governance.

C.

Supporting public awareness and education on Al.

D.

Adopting low-risk uses of AI.

Question # 16

What is the Generally Accepted Privacy Principles (GAPP) framework?

A.

An information management model that is widely recognized across many Canadian industries.

B.

A comprehensive guide for industry best practices as delineated by the Canadian federal Privacy Commissioner.

C.

A template for Privacy Impact Assessments (PIAs) that are conducted within private sector organizations in Canada.

D.

A principles-based privacy approach advocated by Canada’s leading accounting industry group and its U.S.-based counterpart.

Question # 17

Which of the following describes a difference between the federal Privacy Commissioner and provincial commissioners?

A.

Provincial commissioners can order an organization to act.

B.

Provincial commissioners are limited to recommending actions.

C.

The federal commissioner has the power to make an organization comply.

D.

The federal commissioner must receive complaints from a legislative representative.

Question # 18

What must an organization do to fulfill the Personal Information Protection and Electronic Documents Act’s (PIPEDA) transparency requirements when transferring personal information to a foreign country?

A.

Inform customers if data is to be transferred outside of Canada and solicit additional consent.

B.

Give individuals with an existing business relationship the right to refuse transfer of their information.

C.

Advise customers that their data may be accessed by another jurisdiction ' s courts or law enforcement.

D.

Provide new customers with a measure-by-measure comparison of relevant foreign laws with Canadian laws.

Question # 19

According to PIPEDA, all of the following data is considered sensitive: physical disability, ethnicity, sexual orientation and?

A.

Age

B.

Gender

C.

Locality

D.

Religion

Question # 20

In which instance is your personal information deemed publicly available?

A.

You belong to a professional body and your name exists on a registry that meets legal requirements.

B.

You volunteer for an organization and they register you on their contact list in order to book you for future shifts.

C.

You applied to a variety of universities and your application data exists on a register by the admissions departments.

D.

You contributed financial donations to your local church and your name exists on their list for income tax receipt purposes.

Go to page: