GDPR 2018

Question 1

What does GDPR stand for?

Answer 1

General Data Protection Regulation

Question 2

True or False: GDPR applies only to organizations within the European Union.

Answer 2

False

Question 3

What is the primary purpose of GDPR?

Answer 3

To protect the privacy and personal data of individuals within the EU.

Question 4

Fill in the blank: GDPR came into effect on _______.

Answer 4

May 25, 2018

Question 5

Which of the following is a key principle of GDPR? (a) Data Minimization (b) Data Maximization

Answer 5

a) Data Minimization

Question 6

What rights do individuals have under GDPR?

Answer 6

Rights include access, rectification, erasure, restriction of processing, data portability, and the right to object.

Question 7

True or False: Organizations must appoint a Data Protection Officer (DPO) under GDPR.

Answer 7

True

Question 8

What is ‘personal data’ as defined by GDPR?

Answer 8

Any information relating to an identified or identifiable natural person.

Question 9

What is the maximum fine for non-compliance with GDPR?

Answer 9

Up to €20 million or 4% of global annual turnover, whichever is higher.

Question 10

What is the ‘Right to be Forgotten’?

Answer 10

The right of individuals to have their personal data erased under certain conditions.

Question 11

Fill in the blank: GDPR requires organizations to report data breaches within _______ hours.

Answer 11

72

Question 12

Which of the following is NOT considered personal data? (a) Name (b) Company name

Answer 12

b) Company name

Question 13

What is ‘data portability’ under GDPR?

Answer 13

The right of individuals to obtain and reuse their personal data across different services.

Question 14

True or False: Consent under GDPR must be explicit and informed.

Answer 14

True

Question 15

What does ‘privacy by design’ mean in the context of GDPR?

Answer 15

Incorporating data protection measures from the start of any project or system.

Question 16

What is a Data Processing Agreement (DPA)?

Answer 16

A contract between a data controller and a data processor that outlines the processing of personal data.

Question 17

Fill in the blank: GDPR applies to _______ data processors and controllers.

Answer 17

all

Question 18

What does ‘legitimate interest’ mean in GDPR?

Answer 18

A lawful basis for processing personal data where the processing is necessary for the legitimate interests of the data controller.

Question 19

Which authority oversees the enforcement of GDPR?

Answer 19

Data Protection Authorities (DPAs) in each EU member state.

Question 20

True or False: GDPR allows for the transfer of personal data outside the EU.

Answer 20

True

Question 21

What is ‘profiling’ in the context of GDPR?

Answer 21

Any form of automated processing of personal data to evaluate certain personal aspects of an individual.

Question 22

Fill in the blank: GDPR was designed to replace the _______ directive.

Answer 22

Data Protection

Question 23

What is the significance of ‘Article 30’ in GDPR?

Answer 23

It requires organizations to maintain a record of processing activities.

Question 24

What does the term ‘data breach’ mean?

Answer 24

A security incident that results in unauthorized access to personal data.

Question 25

True or False: GDPR applies to both automated and manual processing of personal data.

Answer 25

True

Question 26

What are the consequences of non-compliance with GDPR?

Answer 26

Fines, legal action, and damage to reputation.