Exin Exam PDPF Topic 8 Question 15 Discussion

Actual exam question for Exin's Privacy and Data Protection Foundation exam

Question #: 15
Topic #: 8

[All Privacy and Data Protection Foundation Questions]

What is the purpose of a data protection audit by the supervisory authority?

ATo monitor and enforce the application of the GDPR by assessing that processing is performed in compliance with the GDPR.

BTo fulfill the obligation in the GDPR to implement appropriate technical and organizational measures for data protection.

CTo advise the controller on the mitigation of privacy risks to protect the controller from liability claims for
non-compliance.

Show Suggested Answer

Suggested Answer: A

To advise the controller on the mitigation of privacy risks to protect the controller from liability claims for non-compliance. Incorrect. The supervisory authority has the task to monitor compliance and to advise on enhancements, but its purpose is not to protect the controller.

To fulfill the obligation in the GDPR to implement appropriate technical and organizational measures for data protection. Incorrect. The audit is not the implementation of the measures, but an assessment of the effectiveness of them.

To monitor and enforce the application of the GDPR by assessing that processing is performed in compliance with the GDPR. Correct. According to the GDPR this is an important task of a supervisory authority. (Literature: A, Chapter 7; GDPR Article 57 (1)(a))

by Theodora at May 10, 2022, 12:47 AM

Limited Time Offer

25%

Off

Get Premium PDPF Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!