Curious about Actual IAPP Certified Information Privacy Professional (CIPP-US) Exam Questions?

Here are sample IAPP Certified Information Privacy Professional/United States (CIPP-US) Exam questions from real exam. You can get more IAPP Certified Information Privacy Professional (CIPP-US) Exam premium practice questions at TestInsights.

Page: 1 /
Total 168 questions

Want more questions? Get Premium Access.

Question 1

When developing a company privacy program, which of the following relationships will most help a privacy professional develop useful guidance for the organization?

ARelationships with individuals within the privacy professional community who are able to share expertise and leading practices for different industries.

BRelationships with clients, vendors, and customers whose data will be primarily collected and used throughout the organizational program.

CRelationships with company leaders responsible for approving, implementing, and periodically reviewing the corporate privacy program.

DRelationships with individuals across company departments and at different levels in the organization's hierarchy.

Correct : D

IAPP Book, Section 4.3.1.1, paragraph 3.

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

ARelationships with individuals within the privacy professional community who are able to share expertise and leading practices for different industries.

BRelationships with clients, vendors, and customers whose data will be primarily collected and used throughout the organizational program.

CRelationships with company leaders responsible for approving, implementing, and periodically reviewing the corporate privacy program.

DRelationships with individuals across company departments and at different levels in the organization's hierarchy.

0 / 1500

Question 2

A financial services company install "bossware" software on its employees' remote computers to monitor performance. The software logs screenshots, mouse movements, and keystrokes to determine whether an employee is being productive. The software can also enable the computer webcams to record video footage.

Which of the following would best support an employee claim for an intrusion upon seclusion tort?

AThe webcam is enabled to record video any time the computer is turned on.

BThe company creates and saves a biometric template for each employee based upon keystroke dynamics.

CThe software automatically sends a notification to a supervisor any time the employee's mouse is dormant for more than five minutes.

DThe webcam records video of an employee using a company laptop to perform personal business while at a coffee shop during work hours.

Correct : A

If the camera begins recording whenever the computer is turned on, that creates a strong argument that the employer is impinging upon the the employee's right to privacy outside of work hours and in a private setting.

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

AThe webcam is enabled to record video any time the computer is turned on.

BThe company creates and saves a biometric template for each employee based upon keystroke dynamics.

CThe software automatically sends a notification to a supervisor any time the employee's mouse is dormant for more than five minutes.

DThe webcam records video of an employee using a company laptop to perform personal business while at a coffee shop during work hours.

0 / 1500

Question 3

The CFO of a pharmaceutical company is duped by a phishing email and discloses many of the company's employee personnel files to an online predator. The files include employee contact information, job applications, performance reviews, discipline records, and job descriptions.

Which of the following state laws would be an affected employee's best recourse against the employer?

AThe state social security number confidentiality statute.

BThe state personnel record review statute.

CThe state data destruction statute.

DThe state UDAP statute.

Correct : B

A state personnel record review statute typically governs the access, maintenance, and protection of employee personnel records. It may establish certain rights for employees to access their own personnel records, and it could also include provisions related to data security and breaches of employee information. Given that the disclosed information includes employee contact information, job applications, performance reviews, and other personnel-related data, the affected employee could potentially rely on this statute to seek remedies or protections related to the breach of their personal and confidential information.

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

AThe state social security number confidentiality statute.

BThe state personnel record review statute.

CThe state data destruction statute.

DThe state UDAP statute.

0 / 1500

Question 4

SCENARIO -

Please use the following to answer the next question:

Miraculous Healthcare is a large medical practice with multiple locations in California and Nevad

a. Miraculous normally treats patients in person, but has recently decided to start offering telehealth appointments, where patients can have virtual appointments with on-site doctors via a phone app.

For this new initiative, Miraculous is considering a product built by MedApps, a company that makes quality telehealth apps for healthcare practices and licenses them to be used with the practices' branding. MedApps provides technical support for the app, which it hosts in the cloud. MedApps also offers an optional benchmarking service for providers who wish to compare their practice to others using the service.

Riya is the Privacy Officer at Miraculous, responsible for the practice's compliance with HIPAA and other applicable laws, and she works with the Miraculous procurement team to get vendor agreements in place. She occasionally assists procurement in vetting vendors and inquiring about their own compliance practices, as well as negotiating the terms of vendor agreements. Riya is currently reviewing the suitability of the MedApps app from a privacy perspective.

Riya has also been asked by the Miraculous Healthcare business operations team to review the MedApps' optional benchmarking service. Of particular concern is the requirement that Miraculous Healthcare upload information about the appointments to a portal hosted by MedApps.

What HIPAA compliance issue would Miraculous have to consider before using the telehealth app?

AHIPAA does not permit healthcare providers to use cloud hosting services.

BHIPAA does not permit in-person appointment data to be hosted in the cloud.

CHIPAA would require Miraculous and MedApps to enter into a Business Associate Agreement.

DHIPAA would require Miraculous to obtain patient consent before in-person appointment data can be shared with third parties.

Correct : C

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

AHIPAA does not permit healthcare providers to use cloud hosting services.

BHIPAA does not permit in-person appointment data to be hosted in the cloud.

CHIPAA would require Miraculous and MedApps to enter into a Business Associate Agreement.

DHIPAA would require Miraculous to obtain patient consent before in-person appointment data can be shared with third parties.

0 / 1500

Question 5

Which of the following federal agencies does NOT have regulatory authority related to privacy?

AConsumer Financial Protection Bureau.

BU.S. Department of Transportation.

CU.S. Department of Commerce.

DFederal Reserve

Correct : B

Options Selected by Other Users:

Mark Question:

Start a Discussions

Submit Your Answer:

AConsumer Financial Protection Bureau.

BU.S. Department of Transportation.

CU.S. Department of Commerce.

DFederal Reserve

0 / 1500

Page: 1 / 34
Total 168 questions

Unlock Full
CIPP-US Exam Features

In Just $49 You can Access

All Official Question Types
Interactive Web-Based Practice Test Software
No Installation or 3rd Party Software Required
Customize your practice sessions (Free Demo)
24/7 Customer Support

Get Full Access Now

Marked Questions
CIPP-US Exam

CIPP-US Exam Question 1
CIPP-US Exam Question 2
CIPP-US Exam Question 3
CIPP-US Exam Question 4
CIPP-US Exam Question 5

Download PDF File Demo

Try Web-Based Exam Practice Software Demo

Commenting

In order to participate in the comments you need to be logged-in.
You can sign-up or login