Which of the following accurately describes the purpose of a particular federal enforcement agency?
A. The National Institute of Standards and Technology (NIST) has established mandatory privacy standards that can then be enforced against all for-profit organizations by the Department of Justice (DOJ).
B. The Federal Communications Commission (FCC) regulates privacy practices on the internet and enforces violations relating to websites' posted privacy disclosures.
C. The Cybersecurity and Infrastructure Security Agency (CISA) is authorized to bring civil enforcement actions against organizations whose website or other online service fails to adequately secure personal information.
D. The Federal Trade Commission (FTC) is typically recognized as having the broadest authority under the FTC Act to address unfair or deceptive privacy practices.
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Which federal law or regulation preempts state law?
A. Controlling the Assault of Non-Solicited Pornography and Marketing Act
B. Telemarketing Sales Rule
C. Health Insurance Portability and Accountability Act
D. Electronic Communications Privacy Act of 1986
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
A large online bookseller decides to contract with a vendor to manage Personal Information (PI).
What is the least important factor for the company to consider when selecting the vendor?
A. The vendor's employee training program
B. The vendor's employee retention rates
C. The vendor's reputation
D. The vendor's financial health
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Which law provides employee benefits, but often mandates the collection of medical information?
A. The Family and Medical Leave Act.
B. The Americans with Disabilities Act.
C. The Occupational Safety and Health Act.
D. The Employee Medical Security Act.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
All the following are security requirements set forth by the HIPPA Security Rule, except:
A. Establish an annual compliance audit process with the Office of Civil Rights.
B. Designate a responsible person for the security program.
C. Ensure compliance by the workforce and implement a security and awareness training program.
D. Conduct initial and ongoing risk assessments.
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
华束** -
Pass4TestのCIPP-USの問題集を習得して本場試験に合格した。しかも高得点。次はCIPP-Eに挑戦したいと思います!