Exin PDPF Exam - Topic 5 Question 97 Discussion

Actual exam question for Exin's PDPF exam

Question #: 97
Topic #: 5

[All PDPF Questions]

Which cause is a data breach according to the GDPR?

Aillegally obtained corporate data from a human resources management system

BPersonal data is processed without a binding contract.

CPersonal data is processed by anyone other than the controller, processor or, possibly, subprocessor

DThe operation of a vulnerable server in the internal network of the processor

Show Suggested Answer

Suggested Answer: A

by Shad at Apr 06, 2026, 10:41 PM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

4 days ago

I feel like C could be a breach since it mentions processing by anyone other than the authorized parties. That sounds risky!

upvoted 0 times

...

9 days ago

I remember we discussed that personal data needs protection, but I'm confused if B really counts as a breach.

upvoted 0 times

...

14 days ago

I think a data breach involves unauthorized access, so maybe A is the right answer? But I'm not completely sure.

upvoted 0 times

...