IAPP CIPM Exam - Topic 5 Question 36 Discussion

Actual exam question for IAPP's CIPM exam

Question #: 36
Topic #: 5

[All CIPM Questions]

An organization is establishing a mission statement for its privacy program. Which of the following statements would be the best to use?

AThis privacy program encourages cross-organizational collaboration which will stop all data breaches

BOur organization was founded in 2054 to reduce the chance of a future disaster like the one that occurred ten years ago. All individuals from our area of the country should be concerned about a future disaster. However, with our privacy program, they should not be concerned about the misuse of their information.

CThe goal of the privacy program is to protect the privacy of all individuals who support our organization. To meet this goal, we must work to comply with all applicable privacy laws.

DIn the next 20 years, our privacy program should be able to eliminate 80% of our current breaches. To do this, everyone in our organization must complete our annual privacy training course and all personally identifiable information must be inventoried.

Show Suggested Answer

Suggested Answer: C

by Alyce at Oct 16, 2022, 05:31 AM

Limited Time Offer

25%

Off

Get Premium CIPM Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Portia

4 months ago

B seems a bit dramatic, but I get the point about future concerns.

upvoted 0 times

...

Barb

4 months ago

A is misleading; no program can stop all breaches.

upvoted 0 times

...

Lashawn

5 months ago

Wait, how can they promise to eliminate 80% of breaches in 20 years? Sounds too good to be true.

upvoted 0 times

...

Carlee

5 months ago

I totally agree with C, it’s all about following the laws!

upvoted 0 times

...

Fidelia

5 months ago

Option C is the most realistic and compliant approach.

upvoted 0 times

...

Rosita

5 months ago

D mentions specific metrics, which could be good, but it sounds a bit too ambitious for a mission statement.

upvoted 0 times

...

Val

5 months ago

B feels a bit off-topic; it talks about past disasters instead of focusing on the privacy program's goals.

upvoted 0 times

...

Tiara

5 months ago

I think C aligns best with what we practiced about compliance and protecting individual privacy, but I'm not entirely sure.

upvoted 0 times

...

Alana

5 months ago

I remember we discussed how mission statements should be realistic and not promise impossible outcomes, so A seems too extreme.

upvoted 0 times

...

Matt

5 months ago

Hmm, I'm a bit unsure here. I was thinking maybe a transactional relationship would be better since ABC doesn't want to be too reliant on a single supplier. But the question mentions there are only a few suppliers, so that complicates things.

upvoted 0 times

...

Armanda

5 months ago

I'm a bit confused on this one. I'll need to review the nzrestore utility documentation to make sure I understand the npshost option properly.

upvoted 0 times

...

Billy

5 months ago

I'm pretty confident the answer is TRUE. The write memory command is required to save the ZTP cancel mode configuration and ensure it doesn't get reset. This is an important step that we need to remember.

upvoted 0 times

...

Margery

5 months ago

I'm a bit confused by the wording of this question. What exactly do they mean by "VM density"? I'll need to make sure I understand that before I can answer.

upvoted 0 times

...

Vicky

6 months ago

I think the BBA does involve Medicare+Choice, but I'm unsure about the licensing part. Did it require them to be non-risk-bearing?

upvoted 0 times

...