Free Access IAPP.CIPP-E.v2022-11-25.q113 Practice Test (Page 22)

Question 102

Which institution has the power to adopt findings that confirm the adequacy of the data protection level in a non-EU country?

A.The European Parliament

B.The European Commission

C.The Article 29 Working Party

D.The European Council

Question 103

Which of the following describes a mandatory requirement for a group of undertakings that wants to appoint a single data protection officer?

A.The group of undertakings must be comprised of organizations of similar sizes and functions.

B.The data protection officer must be easily accessible from each establishment where the undertakings are located.

C.The data protection officer must be located in the country where the data controller has its main establishment.

D.The group of undertakings must obtain approval from a supervisory authority.

Question 104

Which of the following was the first legally binding international instrument in the area of data protection?

A.Convention 108.

B.Universal Declaration of Human Rights.

C.General Data Protection Regulation.

D.EU Directive on Privacy and Electronic Communications.

Question 105

What obligation does a data controller or processor have after appointing a data protection officer?

A.To ensure that the data protection officer acts as the sole point of contact for individuals' questions about their personal data.

B.To provide resources necessary to carry out the defined tasks of the data protection officer and to maintain his or her expert knowledge.

C.To ensure that the data protection officer receives sufficient instructions regarding the exercise of his or her defined tasks.

D.To submit for approval to the data protection officer a code of conduct to govern organizational practices and demonstrate compliance with data protection principles.

Question 106

When assessing the level of risk created by a data breach, which of the following would NOT have to be taken into consideration?

A.The size of any data processor involved.

B.The nature, sensitivity and volume of personal data.

C.The ease of identification of individuals.

D.The special characteristics of the data controller.

Other Version: 2752IAPP.CIPP-E.v2025-08-02.q177; 2242IAPP.CIPP-E.v2023-08-14.q153; 2956IAPP.CIPP-E.v2022-07-03.q102; 2476IAPP.CIPP-E.v2022-05-14.q101; 57IAPP.Trainingdump.CIPP-E.v2021-11-07.by.june.59q.pdf

Latest Upload: 264PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 379Nokia.4A0-113.v2026-05-01.q69; 410EC-COUNCIL.312-49v11.v2026-04-30.q214; 329Microsoft.MB-820.v2026-04-30.q101; 256Salesforce.MC-202.v2026-04-30.q57; 301BICSI.INSTC_V8.v2026-04-29.q53; 428NMLS.MLO.v2026-04-28.q82; 287NCARB.Project-Management.v2026-04-28.q27; 509EMC.D-AV-DY-23.v2026-04-27.q184; 1341ServiceNow.CSA.v2026-04-27.q483

Question 102

Question 103

Question 104

Question 105

Question 106

Download PDF File