Module 4: Privacy

Question 1

A wide-ranging act that authorized $787 billion in spending and tax cuts over a 10-year period and included strong privacy provisions for electronic health records, such as banning the sale of health information, promoting the use of audit trails and encryption, and providing rights of access for patients.

Answer 1

American Recovery and Reinvestment Act

Question 2

The first 10 amendments to the United States Constitution that spell out additional rights of individuals.

Answer 2

Bill of Rights

Question 3

An act implemented in 1998 in an attempt to give parents control over the collection, use, and disclosure of their children’s personal information.

Answer 3

Children’s Online Privacy Protection Act (COPPA)

Question 4

An act passed in 1994 that amended the Wiretap Act and Electronic Communications Privacy Act, which required the telecommunications industry to build tools into its products that federal investigators could use—after obtaining a court order—to eavesdrop on conversations and intercept electronic communications.

Answer 4

Communications Assistance for Law Enforcement Act (CALEA)

Question 5

Text files that can be downloaded to the hard drives of users who visit a website, so that the website is able to identify visitors on subsequent visits.

Answer 5

cookie

Question 6

Using the Internet for purposes unrelated to work such as posting to Facebook, sending personal emails or Instant messages, or shopping online.

Answer 6

cyberloafing

Question 7

An act that deals with the protection of three main issues: (1) the protection of communications while in transfer from sender to receiver; (2) the protection of communications held in electronic storage; and (3) the prohibition of devices from recording dialing, routing, addressing, and signaling information without a search warrant

Answer 7

Electronic Communications Privacy Act (ECPA)

Question 8

The collection, preparation, review, and production of electronically stored information for use in criminal and civil actions and proceedings.

Answer 8

electronic discovery (e-discovery)

Question 9

Any form of digital information, including emails, drawings, graphs, web pages, photographs, word-processing files, sound recordings, and databases stored on any form of magnetic storage device, including hard drives, CDs, and flash drives.

Answer 9

electronically stored information (ESI)

Question 10

A directive that requires any company doing business within the borders of the countries comprising the European Union (EU) to implement a set of privacy directives on the fair and appropriate use of information.

Answer 10

European Union Data Protection Directive

Question 11

An amendment to the Fair Credit Reporting Act passed in 2003 that allows consumers to request and obtain a free credit report once each year from each of the three primary consumer credit reporting companies (Equifax, Experian, and TransUnion).

Answer 11

Fair and Accurate Credit Transactions Act

Question 12

An act that regulates the operations of credit-reporting bureaus, including how they collect, store, and use credit information.

Answer 12

Fair Credit Reporting Act

Question 13

A term for a set of guidelines that govern the collection and use of personal data.

Answer 13

fair information practices

Question 14

A federal law that assigns certain rights to parents regarding their children’s educational records.

Answer 14

Family Educational Rights and Privacy Act (FERPA)

Question 15

Created by the FISA, this court meets in secret to hear applications for orders approving electronic surveillance anywhere within the United States.

Answer 15

FISA Court

Question 16

Information relating to the capabilities, intentions, or activities of foreign governments or agents of foreign governments or foreign organizations.

Answer 16

foreign intelligence

Question 17

An act that granted NSA expanded authority to collect, without court-approved warrants, international communications as they flow through U.S. telecommunications network equipment and facilities.

Answer 17

Foreign Intelligence Surveillance Act of 1978 Amendments Act of 2008

Question 18

An amendment to the United States Constitution that protects citizens from unreasonable government searches and is often invoked to protect the privacy of government employees.

Answer 18

Fourth Amendment

Question 19

A law that grants citizens the right to access certain information and records of federal, state, and local governments upon request.

Answer 19

Freedom of Information Act (FOIA)

Question 20

A bank deregulation law that repealed a Depression-era law known as Glass–Steagall and requires companies that offer consumers financial products or services like loans, financial or investment advice, or insurance—to explain their information-sharing practices to their customers and to safeguard sensitive data.

Answer 20

Gramm-Leach-Bliley Act (GLBA)

Question 21

An act designed to improve the portability and continuity of health insurance coverage; to reduce fraud, waste, and abuse in health insurance and healthcare delivery; and to simplify the administration of health insurance.

Answer 21

Health Insurance Portability and Accountability Act (HIPAA)

Question 22

The combination of communications privacy and data privacy.

Answer 22

information privacy

Question 23

Instructions sent by organizations to inform its employees (or employees of the opposing party) to save relevant data and to suspend data that might be due to be destroyed based on normal data-retention rules.

Answer 23

litigation hold notice

Question 24

Compels holders of your personal records to turn them over to the government; an NSL is not subject to judicial review or oversight.

Answer 24

National Security Letter (NSL)

Question 25

Prohibits National Security Letter (NSL) recipients from informing anyone, even the person who is the subject of the NSL request, that the government has secretly requested his or her records.

Answer 25

NSL gag provision

Question 26

To give an organization the right to share personal data, such as annual earnings, net worth, employers, personal investment information, loan amounts, and Social Security numbers, to other organizations.

Answer 26

opt in

Question 27

To refuse to give an organization the right to collect and share personal data with unaffiliated parties.

Answer 27

opt out

Question 28

An act that granted a four-year extension of two key provisions in the USA PATRIOT Act that allowed roving wiretaps and searches of business records.

Answer 28

PATRIOT Sunsets Extension Act of 2011

Question 29

A device that records electronic impulses to identify the numbers dialed for outgoing calls.

Answer 29

pen register

Question 30

A process that couples human guidance with computer-driven concept searching in order to “train” document review software to recognize relevant documents within a large collection of documents.

Answer 30

predictive coding

Question 31

Establishes a code of fair information practices that sets rules for the collection, maintenance, use, and dissemination of personal data that is kept in systems of records by federal agencies.

Answer 31

Privacy Act

Question 32

“the right to be left alone—the most comprehensive of rights, and the right most valued by a free people.”

Answer 32

right of privacy

Question 33

An act that protects the records of financial institution customers from unauthorized scrutiny by the federal government.

Answer 33

Right to Financial Privacy Act

Question 34

A cell phone spy software that can be loaded onto someone’s cell phone or smartphone within minutes, making it possible for the user to perform location tracking, record calls, view every text message or picture sent or received, and record the URLs of any website visited on the phone.

Answer 34

stalking app

Question 35

A law that regulates the interception of wire (telephone) and oral communications; also known as the Wiretap Act.

Answer 35

Title III of the Omnibus Crime Control and Safe Streets Act

Question 36

The flow of personal data across national boundaries

Answer 36

transborder data flow

Question 37

A device that records the originating number of incoming calls for a particular phone number

Answer 37

trap and trace

Question 38

Under FISA, it is defined as a U.S. citizen, permanent resident, or company.

Answer 38

U.S. person

Question 39

An act passed following startling revelations by Edward Snowden of secret NSA surveillance programs, which terminated the bulk collection of telephone metadata by the NSA

Answer 39

USA Freedom Act

Question 40

An act passed 5 weeks after the terrorist attacks of September 11, 2001. It gave sweeping new powers both to domestic law enforcement and U.S. international intelligence agencies, including increasing the ability of law enforcement agencies to search telephone, email, medical, financial, and other records.

Answer 40

USA PATRIOT Act

Question 41

A device that records vehicle and occupant data for a few seconds before, during, and after any vehicle crash that is severe enough to deploy the vehicle’s airbags.

Answer 41

vehicle event data recorder (EDR)

Question 42

A law that regulates the interception of wire (telephone) and oral communications; also known as the Title III of the Omnibus Crime Control and Safe Streets Act.

Answer 42

Wiretap Act

Question 43

The Supreme Court has stated that American citizens are protected by the Fourth Amendment with no exception. True or False?

Answer 43

False

Question 44

______________ is a system employed to collect Internet data including search histories, photos sent and received; the contents of email, file transfers, and voice and video chats; and other Internet communication data.

Answer 44

PRISM

Question 45

Although a number of independent laws and acts have been implemented over time, no single, overarching data privacy policy has been developed in the United States. However, there is an established advisory agency that recommends acceptable privacy practices to U.S. businesses. True or False?

Answer 45

False

Question 46

This act allows consumers to request and obtain a free credit report once each year from each of the three primary consumer credit reporting companies.

Answer 46

Fair and Accurate Credit Transactions Act

Question 47

Under (the) ________, the presumption is that a student’s records are private and not available to the public without the consent of the student.

Answer 47

Family Educational Rights and Privacy Act

Question 48

_________ describes procedures for the electronic surveillance and collection of foreign intelligence between foreign powers and agents of foreign powers. It also created a special court which meets in secret to hear applications for orders approving electronic surveillance anywhere within the United States.

Answer 48

The Foreign Intelligence Surveillance Act

Question 49

(The) ___________approves the use of any intelligence collection techniques that are in accordance with procedures established by the head of the intelligence community and approved by the attorney general.

Answer 49

Executive Order 12333

Question 50

The number of U.S. government intelligence-gathering units identified in Executive Order 12333 exceeds 18. True or False?

Answer 50

True

Question 51

The _________ is designed to strengthen the data protection for individuals within the EU and includes stiff penalties for privacy violations.

Answer 51

General Data Protection Regulation

Question 52

Federal agencies receiving a __________request must acknowledge that the request has been received and indicate when the request will be fulfilled, with an initial response within 20 working days unless an unusual circumstance occurs.

Answer 52

Freedom of Information Request

Question 53

Many companies obtain information about web surfers through the use of __________, which are text files that can be downloaded to the hard drives of users so that the website is able to identify visitors on subsequent visits.

Answer 53

cookies

Question 54

Publicly traded organizations have an obligation to report all data breaches to the Securities and Exchange Commission. True or False?

Answer 54

False

Question 55

Often organizations who are engaged in litigation will send a _____________ notice to its employees or to the opposing party to save relevant data and to suspend data that might be due to be destroyed based on normal data-retention rules.

Answer 55

litigation hold

Question 56

________is a process that couples human guidance with computer-driven concept searching in order to train document review software to recognize relevant documents with a document universe.

Answer 56

Predictive coding

Question 57

A recent study revealed that between _________ percent of workers’ time online has nothing to do with work.

Answer 57

60 and 80

Question 58

The Fourth Amendment cannot be used to limit how a private employer treats its employees, and private-sector employees must seek legal protection against an invasive employer under various state statues. True or False?

Answer 58

True

Question 59

China has more surveillance cameras per person than Great Britain. True or False?

Answer 59

False

Question 60

Beginning with the model year 2011 vehicles, the National Highway Safety Administration defined a minimum set of 15 data elements that must be captured for manufacturers who voluntarily install Electronic Data Recorders on their vehicles. True or False?

Answer 60

True