Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Iapp Discussions
exam questions

Exam CIPP-A All Questions

View all questions & answers for the CIPP-A exam
Go to Exam

Exam CIPP-A topic 1 question 58 discussion

Actual exam question from IAPP's CIPP-A
Question #: 58
Topic #: 1
[All CIPP-A Questions]

In addition to adhering to the data export principle of section 43A of India's IT Act 2000, data exporters in India must also follow principles of?

  • A. Privity of contract.
  • B. Disclosure limitation.
  • C. Mandatory registration.
  • D. Third party assessment.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by rhyst1921 at March 24, 2024, 4:39 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Bhimesh
8 months ago
Selected Answer: B
Section 43A and the 2011 Rules 3-8 Rule 6: Disclosure Limitations and Exceptions  SPI only: Disclosure of sensitive personal data or information by body corporate to any third party shall require prior permission from the provider of such information, who has provided such information under lawful contract or otherwise, unless such disclosure has been agreed to in the contract between the body corporate and provider of information, or where the disclosure is necessary for compliance of a legal obligation.  Companies prohibited from “publishing” SPI.  Third parties receiving SPI shall not disclose it further.  EXCEPTION: Disclosure permitted to govt agencies mandated by law to obtain info (including SPI) for verification of ID, prevention, detection, investigation of cyber incidents, prosecution, punishment.  No disclosure rights for data subject if data subject is not also provider.
upvoted 1 times
Bhimesh
8 months ago
Disclosure limitations and exceptions (rule 6) Companies disclosing ‘sensitive personal data or information’ to any third party require prior permission from the provider of the personal data who has provided such information under lawful contract or otherwise to the body corporate. Disclosures agreed by contract between the provider of the information, or necessary for compliance with a legal obligation, are also allowed. Companies must not ‘publish’ sensitive personal information (presumably meaning they must not make it generally available to the public). Third parties receiving sensitive personal data under this Rule ‘shall not disclose it further’.
upvoted 1 times
...
...
rhyst1921
8 months, 1 week ago
Selected Answer: B
Should be B - disclosure limitation. Disclosure limitation (Rule 6 of the IT rules) is an essential aspect of data protection and privacy regulations. It involves restricting the amount of sensitive information that can be accessed or disclosed to third parties without proper authorization. This principle is particularly important in the context of data export to ensure that personal data is adequately protected during transfer.
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel