New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

IAPP CIPP/C Exam - Topic 3 Question 60 Discussion

Actual exam question for IAPP's CIPP/C exam
Question #: 60
Topic #: 3
[All CIPP/C Questions]

A private sector daycare's portal for parents stores their children's photos, allergy information and date of birth. A parent has asked about the portal's security requirements and in three months still not has received an answer. What is missing from the daycare's procedures?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Jess at Mar 08, 2025, 08:20 PM

Limited Time Offer

25%

Off

Get Premium CIPP/C Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Dorathy
3 months ago
Completing a risk assessment sounds like a good idea, but do they even know how?
upvoted 0 times
...
Bettina
4 months ago
I wonder if they even have proper security measures in place.
upvoted 0 times
...
Starr
4 months ago
Wait, three months? That's way too long!
upvoted 0 times
...
Kaitlyn
4 months ago
Agree, transparency is key for parents.
upvoted 0 times
...
Ettie
4 months ago
They should definitely respond within 30 days!
upvoted 0 times
...
Jolanda
5 months ago
I vaguely recall something about risk assessments being necessary, so option D might be important too, but I’m not completely confident.
upvoted 0 times
...
Gary
5 months ago
I practiced a similar question about data protection, and I think strong encryption is crucial, which points to option C.
upvoted 0 times
...
Andree
5 months ago
I’m not entirely sure, but I think transparency is key in these situations, so maybe option A is also a factor?
upvoted 0 times
...
Aron
5 months ago
I remember discussing the importance of responding to requests in a timely manner, so option B seems relevant here.
upvoted 0 times
...
Cherry
5 months ago
This is a good one. I'll make sure to read through the options carefully and think about the specific legal and regulatory requirements around data security and customer communication for a business like a daycare.
upvoted 0 times
...
Anisha
5 months ago
Okay, let's see. The key things I'm looking for are whether the daycare has clear security and privacy policies, if they're communicating those to parents, and if they're responding to inquiries in a timely manner. I think I can work through this step-by-step.
upvoted 0 times
...
Gilma
5 months ago
Hmm, I'm a bit unsure about this one. The question is asking what's missing, but it's not clear if there's a single right answer or if multiple options could be correct.
upvoted 0 times
...
Hortencia
5 months ago
This seems like a straightforward security and compliance question. I'll focus on the key requirements around transparency, timely response, and security measures.
upvoted 0 times
...
Bette
10 months ago
Ah, the joys of bureaucracy. I'd put my money on 'Responding to the parent's request within 30 days' - nothing like a good ol' fashioned customer service fail to really spice up your daycare experience.
upvoted 0 times
Aliza
9 months ago
C: Maybe they should consider some transparency too. Parents have a right to know how their children's information is being protected.
upvoted 0 times
...
Ciara
9 months ago
B: Agreed, it's not rocket science. They need to step up their game.
upvoted 0 times
...
Mabel
9 months ago
A: They really dropped the ball on this one. 'Responding to the parent's request within 30 days' is basic customer service.
upvoted 0 times
...
...
Tonette
10 months ago
Haha, I bet the daycare's IT guy is just sitting at his desk, eating Cheetos and ignoring those emails. 'Real risk of significant harm assessment' sounds about right though, they better get on that!
upvoted 0 times
Billy
9 months ago
C: I agree, they should also make sure they have strong encryption and security measures in place.
upvoted 0 times
...
Linn
9 months ago
B: Yeah, transparency is key when it comes to storing sensitive information like that.
upvoted 0 times
...
Reuben
9 months ago
A: They definitely need to respond to the parent's request within 30 days.
upvoted 0 times
...
...
Kimberely
10 months ago
I'd go with 'Ensuring strong encryption and security measures.' Daycare centers handle some pretty sensitive info, they can't be slacking on the cybersecurity front.
upvoted 0 times
Jamie
9 months ago
C: It's concerning that they haven't responded to the parent's request for three months. Transparency is key in situations like this.
upvoted 0 times
...
Lettie
9 months ago
B: Absolutely, parents need to feel confident that their children's information is safe.
upvoted 0 times
...
Roosevelt
9 months ago
A: I agree, the daycare should definitely prioritize strong encryption and security measures.
upvoted 0 times
...
...
Teddy
10 months ago
Hmm, I'd say the missing piece here is 'Responding to the parent's request within 30 days.' Transparency is key, and leaving a parent hanging for 3 months is just not cool.
upvoted 0 times
...
Venita
11 months ago
Oof, this one's a tough one. The parent's request for info on the portal's security seems like a pretty reasonable ask. The daycare's lack of response is definitely not a good look.
upvoted 0 times
Shasta
9 months ago
D) Completing a real risk of significant harm assessment (RROSH).
upvoted 0 times
...
Keneth
10 months ago
C) Ensuring strong encryption and security measures.
upvoted 0 times
...
Jolanda
10 months ago
B) Responding to the parent's request within 30 days.
upvoted 0 times
...
Vilma
11 months ago
A) Ensuring transparency.
upvoted 0 times
...
...
Ira
11 months ago
I think ensuring strong encryption and security measures is crucial to protect children's data.
upvoted 0 times
...
Rodolfo
11 months ago
Yes, transparency is also important for building trust with parents.
upvoted 0 times
...
Ernest
11 months ago
The daycare should respond to the parent's request within 30 days.
upvoted 0 times
...

Save Cancel