Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25

- Free Preparation Discussions

Exin PDPF Exam - Topic 9 Question 98 Discussion

Actual exam question for Exin's PDPF exam

Question #: 98
Topic #: 9

[All PDPF Questions]

According to the GDPR, what is a description of binding corporate rules (BCR)?

AA decision on the safety of transferring personal data to a non-EEA country

BA set of approved rules on personal data protection used by a group of enterprises

CA measure to compensate for the lack of personal data protection in a third country

DA set of agreements covering personal data transfers between non-EEA countries

Show Suggested Answer

Suggested Answer: B

A decision on the safety of transferring personal data to a non-EEA country. Incorrect. This refers to adequacy decisions.

A measure to compensate for the lack of personal data protection in a third country. Incorrect. This refers to appropriate safeguards.

A set of agreements covering personal data transfers between non-EEA countries. Incorrect. The GDPR does not cover agreements between non-EEA countries.

A set of approved rules on personal data protection used by a group of enterprises. Correct. BCR are a set of rules approved by the supervisory authorities. (Literature: A, Chapter 3; GDPR Article 47)

by Malissa at May 01, 2026, 10:45 AM

Limited Time Offer

25%

Off

Get Premium PDPF Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Amira

24 days ago

I feel like I’ve seen a question like this before, and it was about how BCRs help multinational companies manage data transfers.

upvoted 0 times

...

Leonida

29 days ago

I’m not entirely sure, but I remember something about BCRs being a way to ensure compliance across different countries.

upvoted 0 times

...

Janella

1 month ago

I think BCRs are related to internal policies for data protection, so I’m leaning towards option B.

upvoted 0 times

...