Free Access DSCI.DCPP-01.v2022-11-07.q103 Practice Test (Page 10)

Question 41

After the rules were notified under section 43A of the IT (Amendment) Act, 2008, a clarification was issued
by the government which exempted the service providers, which get access to/processes Sensitive Personal
Data or information (SPDI) under contractual agreement with a legal entity located within or outside India.
Which privacy principle provisions notified under Sec 43A were exempted for the service providers?

A.Disclosure of information

B.Privacy policy (which is published)

C.Access and Correction

D.Consent

Question 42

A non-public document issued by a data controller that directs data processors to adhere to certain privacy principles while processing personal information may be referred to as:

A.Security Policy

B.Privacy Statement

C.Privacy Policy

D.Privacy Notice

Question 43

According to the EU, which of the following steps is not relevant when transferring data from an EU member to a third country that does not meet EU standards?

A.Obtaining approval by the Data Protection Authority or informing it

B.Aligning data protection legislation across geographies

C.A model contract is signed

D.Sizing up the security measures employed by the importing organization to account for the sensitivity of the data being transferred

Question 44

Under which of the following conditions can a company in India may transfer sensitive personal information (SPI) to any other company or a person in India, or located in any other country?

A.Transfer of information is allowed to those who ensure the same level of data protection that is adhered to by the company as provided for under the Indian laws

B.The transfer of information is allowed only after taking approval of Chief Information Commissioner of India

C.The transfer may be allowed only if it is necessary for the performance of the lawful contract or where the data subject has consented to data transfer

D.The transfer of information is allowed only after taking approval of DeitY (Department of Electronics & Information Technology) in India

Question 45

Effective 2013, HIPAA Omnibus rule applies to which of the following?

A.Covered Entities only

B.Business Associates only

C.Covered Entities & Business Associates

D.Federal Health Bodies only

Other Version: 2125DSCI.DCPP-01.v2022-08-28.q114

Latest Upload: 117Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 162TheSecOpsGroup.CNSP.v2025-09-08.q20; 221CFAInstitute.ESG-Investing.v2025-09-08.q173; 155PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 145Salesforce.Data-Architect.v2025-09-05.q216; 139Adobe.AD0-E605.v2025-09-05.q50; 184Nutanix.NCP-MCI-6.10.v2025-09-05.q55; 114Oracle.1z0-591.v2025-09-05.q104

Question 41

Question 42

Question 43

Question 44

Question 45

Download PDF File