nerdexam
IAPP

CIPM · Question #112

CIPM Question #112: Real Exam Question with Answer & Explanation

The correct answer is A. An encrypted USB key with sensitive personal data is stolen. See the full explanation below for the reasoning.

Question

Under the General Data Protection Regulation (GDPR), which of the following situations would LEAST likely require a controller to notify a data subject?

Options

  • AAn encrypted USB key with sensitive personal data is stolen
  • BA direct marketing email is sent with recipients visible in the 'cc' field
  • CPersonal data of a group of individuals is erroneously sent to the wrong mailing list
  • DA hacker publishes usernames, phone numbers and purchase history online after a cyber-attack

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CIPM Practice