GDPR Quiz

Confidentiality, Availability, Integrity, Authentication, Authorization, Non-repudiation

Lawfulness, Fairness, Transparency, Purpose Limitation, Data Minimization, Accuracy, Storage Limitation, Integrity and Confidentiality (Security), and Accountability.

Access, rectification, restriction of processing, data portability, object to processing, and be subject to automated decision-making

Access, rectification, erasure, restriction of processing, data portability, object to processing, and be subject to manual decision-making

Access, rectification, erasure, restriction of processing, data portability, object to processing, and not be subject to automated decision-making.

Access, rectification, erasure, restriction of processing, data portability, object to processing, and be subject to random decision-making

Fairness, transparency, and accountability are core principles of data processing under GDPR.

Lawfulness, fairness, and integrity are essential principles of data processing under GDPR.

Lawfulness, transparency, and accountability are key principles of data processing under GDPR.

Lawfulness, fairness, and transparency are fundamental principles of data processing under GDPR.

Personal data should be collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

Personal data can be used for marketing purposes without restrictions

Personal data can be shared with third parties without consent

Personal data can be collected for any purpose without limitations

Data minimization is defined by GDPR as the practice of storing personal data indefinitely

Data minimization is defined by GDPR as the practice of sharing personal data without consent

Data minimization is defined by GDPR as the practice of limiting the collection and processing of personal data to only what is necessary for a specific purpose.

Data minimization is defined by GDPR as the practice of collecting all available personal data

Data integrity is not important in GDPR

Personal data should be shared openly

Confidentiality is not a concern in data processing

Personal data must be processed securely to maintain its integrity and confidentiality.

Appoint a Data Protection Officer, update privacy policies, obtain consent, provide access, ensure data portability, implement security measures.

Neglect security measures

Share data without consent

Ignore data subject requests

Free cookies for all employees, extended vacation time, unlimited budget for office parties

A pat on the back, a gold star sticker, a high-five

Increased productivity, improved employee morale, enhanced company culture

Fines up to €20 million or 4% of global annual turnover, damage to reputation, loss of customer trust, legal actions

The role of a Data Protection Officer (DPO) in GDPR compliance is to oversee data protection strategies, monitor compliance, provide advice on data protection impact assessments, and act as a point of contact for data subjects and supervisory authorities.

The role of a Data Protection Officer (DPO) in GDPR compliance is to handle marketing campaigns

The role of a Data Protection Officer (DPO) in GDPR compliance is to avoid being a point of contact for data subjects and supervisory authorities

The role of a Data Protection Officer (DPO) in GDPR compliance is to ignore data protection impact assessments

Given, general, uninformed, ambiguous, no action

Forced, vague, undisclosed, unclear, passive

Coerced, broad, hidden, uncertain, negative

Freely given, specific, informed, unambiguous, clear affirmative action