Classify the following scenario as major or minor non-conformity.
“The organization defined information access and usage policy and rolled it out across the organization. No
formal exercise, however, was conducted to prepare the policy. During implementation, certain discrepancies
came out and these were addressed through appropriate policy revisions, though this created a lot of hue and
cry in the organization and the policy was criticized for adversely affecting productivity. But with appropriate
revisions and passage of time, the policy has been accepted. In a recently conducted external audit, one
incident has come to light wherein the usage and access policy has been violated by an employee twice. As per
the auditor, this incident should have been identified by the organization. In its explanation to the auditor, the
management informed that appropriate access and usage monitoring mechanisms have been put in place but
admitted that there may have been some lapses.”
What is a Data Subject? (Choose all that apply.)
The method of personal data usage in which the users must explicitly decide not to participate.
‘Map the legal and compliance requirements to each data element that an organization is dealing with in all of
its business processes, enterprise and operational functions, and client relationships.’ This an imperative of
which DPF practice area?
The concept of data adequacy is based on the principle of _________.
Quickly grab our DCPLA product now and kickstart your exam preparation today!
Name: | DSCI Certified Privacy Lead Assessor |
Exam Code: | DCPLA |
Certification: | DCPLA |
Vendor: | DSCI |
Total Questions: | 97 |
Last Updated: | Apr 24, 2024 |
© Copyright https://certsexpert.com 2015- 2024, All Rights Are Reserved.