← Back to exam page

CIPP-US Certified Information Privacy Professional/United States (CIPP/US)

Loading demo links...

Showing 4–6 of 10 questions

Question 4

What is the most important action an organization can take to comply with the FTC position on retroactive changes to a privacy policy?

Select an option, then click Submit answer.

  • Describing the policy changes on its website.

  • Obtaining affirmative consent from its customers.

  • Publicizing the policy changes through social media.

  • Reassuring customers of the security of their information.
Question 5

If an organization certified under Privacy Shield wants to transfer personal data to a third party acting as an agent, the organization must ensure the third party does all of the following EXCEPT?

Select an option, then click Submit answer.

  • Uses the transferred data for limited purposes

  • Provides the same level of privacy protection as the organization

  • Notifies the organization if it can no longer meet its requirements for proper data handling

  • Enters a contract with the organization that states the third party will process data according to the consent agreement
Question 6

Which federal act does NOT contain provisions for preempting stricter state laws?

Select an option, then click Submit answer.

  • The CAN-SPAM Act

  • The Children’s Online Privacy Protection Act (COPPA)

  • The Fair and Accurate Credit Transactions Act (FACTA)

  • The Telemarketing Consumer Protection and Fraud Prevention Act