IAPP CIPP/C Exam - Topic 1 Question 73 Discussion

Actual exam question for IAPP's CIPP/C exam

Question #: 73
Topic #: 1

Under the Personal Information Protection and Electronic Documents Act (PIPEDA), when engaging in a third-party transfer of personal information for processing, an organization is expected to have the technology to protect the information during transit and to?

DReview the cross-border data flow competed and approved by the Treasury Board of Canada Secretariat.

AEstablish a contract outlining the individual outsourcing arrangement.

CConfirm the jurisdictional protections of the receiving organization are the same as PIPEDA.

BObtain additional consent for the use of the information by the third party.

Show Suggested Answer

Suggested Answer: A

by Ashlyn at Jan 26, 2026, 06:55 PM

Limited Time Offer

25%

Off

Get Premium CIPP/C Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Remedios

20 days ago

I remember a practice question about data transfers where we discussed encryption methods. I think that might be relevant here too.

upvoted 0 times

...

Ivan

26 days ago

I think the organization also needs to ensure that the third party has adequate security measures in place, but I'm not completely sure about the specifics.

upvoted 0 times

...

Catarina

1 month ago

Ugh, I'm drawing a blank on the specifics here. I know PIPEDA has rules around third-party processing, but I can't remember the details. Guess I'll have to take an educated guess and hope I'm on the right track.

upvoted 0 times

...

Adria

1 month ago

This is a good test of our understanding of PIPEDA compliance. I'd outline the key requirements - encryption, access controls, audit trails, etc. - to show I know how organizations need to protect data during these kinds of transfers.

upvoted 0 times

...

Angelica

1 month ago

Okay, I think I've got this. The organization needs to ensure the third party has the right technology and processes in place to securely handle the personal data being transferred. Gotta make sure it's protected the whole way.

upvoted 0 times

...

Beckie

2 months ago

Hmm, I'm a bit unsure about the specifics here. I know PIPEDA has rules around third-party transfers, but I can't quite recall the exact expectations. I'll need to review my notes carefully.

upvoted 0 times

...

Carlee

2 months ago

This seems like a straightforward question about PIPEDA requirements. I'd focus on the key points - protecting personal info during transit and ensuring the third party has appropriate safeguards.

upvoted 0 times

...