CDPSE · Question #142
CDPSE Question #142: Real Exam Question with Answer & Explanation
The correct answer is B: New inter-organizational data flows. A privacy impact assessment (PIA) is a process of analyzing the potential privacy risks and impacts of collecting, using, and disclosing personal data. A PIA should be conducted when there is a change in the data processing activities that may affect the privacy of individuals or
Question
Which of the following scenarios should trigger the completion of a privacy impact assessment (PIA)?
Options
- AUpdates to data quality standards
- BNew inter-organizational data flows
- CNew data retention and backup policies
- DUpdates to the enterprise data policy
Explanation
A privacy impact assessment (PIA) is a process of analyzing the potential privacy risks and impacts of collecting, using, and disclosing personal data. A PIA should be conducted when there is a change in the data processing activities that may affect the privacy of individuals or the compliance with data protection laws and regulations. One of the scenarios that should trigger the completion of a PIA is when there are new inter-organizational data flows, which means that personal data is shared or transferred between different entities or jurisdictions. This may introduce new privacy risks, such as unauthorized access, misuse, or breach of data, as well as new legal obligations, such as obtaining consent, ensuring adequate safeguards, or notifying
Topics
Community Discussion
No community discussion yet for this question.