GDPR Eksamen? Så svær er den officielle certificering

Så er det lige før EU´s GDPR træder i kraft, så det er på høje tid at organisationen bliver klar.

 Lovgivningen gælder både virksomheder i EU, men også virksomheder udenfor EU, som håndterer persondata for EU borgere. Kort sagt betyder GDPR, at der er et EU krav om at alle organisationer som passer på beskrivelsen herunder skal have en Data Protection Officer udpeget.

• Behandling af personoplysninger af en offentlig myndighed
• "Regelmæssig og systematisk overvågning af registrerede i stor skala"
• Storskala behandling af specielle data-for eksempel biometrisk, genetisk, geo-location

Derfor har vi udviklet GDPR kurset, som vil lære dig alt hvad du skal vide for at kunne implementere, administrere og tilpasse en privatlivspolitik baseret på ”General Data Protection Regulation (GDPR)” krav til din organisation – på kun 3 dage.

Men hvor svær er den officielle eksamen egentlig?
Du finder herunder 6 af de officielle engelsksprogede GDPR Test eksamen spørgsmål.

1. 
   
   Which of the following controller/processing scenarios in principle CAN use the Public Interest legal basis?
   
   A. A vehicle licensing agency selling owner names and contact details to the private sector in exchange for money
   
   B. A company director credit checking agency republishing the contents of a Mandatory Public Register of directors which is already in the public domain publishing the names and addresses of directors on the internet
   
   C. A registered and regulated charity receiving information from any public sector body as part of a lawful Data Sharing Agreement
   
   D. None of the above 
    

2. Where the data subject is a child, what steps must controllers take in respect of consent, within the constraints of available technology?
   
   A. Controllers must make best efforts to verify the consent
   
   B. Controllers must make reasonable efforts to verify the consent
   
   C. Controllers must make best efforts to request the consent in clear and plain language, in the context of the age of the child
   
   D. Controllers must make reasonable efforts to request the consent in clear and plain language, in the context of the age of the child
   
   
   3. "While implementing certain data subject rights the controller is NOT obliged by Article 19 to inform each third party recipient of the personal data" For which of the following rights is that statement TRUE?
   
   A. "Non-profiling" under Article 22
   
   B. B. Rectification under Article 16
   
   C. Erasure / "right to be forgotten" under Article 17
   
   D. Restriction under Article 18
   
   
   4. For purposes of a data protection impact assessment, when must the controller seek the views of data subjects or their representatives on the intended processing?
   
   A. Always
   
   B. Never
   
   C. When appropriate
   
   D. When the supervisory authority requests it
   
   
   5. Regarding data subjects protected by the GDPR, which of the following statements is true? 
   
   A. The GDPR protects only people who are physically located in the EU
   
   B. The GDPR protects only EU citizens
   
   C. The GDPR protects only EU residents
   
   D. The GDPR protects only EU domiciliaries 
   
   
   6. In respect of non-profit representation of data subjects, which of the following statements is FALSE?
   
   A. For a not-for-profit body, organisation to execute a mandate on behalf of a data subject, it must have been properly constituted in accordance with the law of a Member State.
   
   B. Member State laws may provide that not-for-profit bodies may bring complaints under Articles 77, 78, and 79 in the absence of mandates from affected data subjects.
   
   C. Any data subject has the right to mandate any not-for-profit body, organisation or association to exercise the rights referred to in Articles 77, 78 and 79 on his or her behalf, and to exercise the right to receive compensation referred to in Article 82 on his or her behalf.
   
   D. Unless a Member State's laws facilitate it, a not-for-profit body cannot exercise the right to receive compensation referred to in Article 82 on a data subject's behalf.

 Hvordan klarede du dig?

Her er de rigtige svar:

1. D

2. B

3. A

4. C

5. A

6. C

Uanset om du svarede rigtigt eller ej, vil du have de bedste chancer for at bestå din GDPR eksamen og få den eneste officielle GDPR certificering fra PECB.

Du kan blive uddannet og certificeret inden jul og på kun 3 dage. Se alt om kurset hér