IAPP Exam CIPP-C Topic 4 Question 61 Discussion

Actual exam question for IAPP's CIPP-C exam

Question #: 61
Topic #: 4

Under the Personal Information Protection and Electronic Documents Act (PIPEDA), an organization must maintain a record of every breach of security safeguards involving personal information for a minimum of?

A3 months.

B12 months.

C24 months.

D36 months

Show Suggested Answer

Suggested Answer: A

by Kami at Mar 22, 2025, 11:23 AM

Limited Time Offer

25%

Off

Get Premium CIPP-C Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Eveline

3 days ago

3 months? Are you kidding me? That's way too short for a data breach record. Gotta be 24 months, no doubt about it.

upvoted 0 times

...

Nenita

5 days ago

Hmm, I thought it was 12 months. But 24 months makes sense, better to be safe than sorry with personal data breaches.

upvoted 0 times

...

Brock

6 days ago

I'm not sure, but I think it makes sense to keep records for at least a year to ensure compliance with PIPEDA.

upvoted 0 times

...

Lenita

7 days ago

Well, this seems straightforward. 24 months is the required retention period, right?

upvoted 0 times

...

Tracey

8 days ago

I agree with Genevive, because it allows organizations to track and analyze breaches over a longer period of time.

upvoted 0 times

...

Genevive

15 days ago

I think the answer is B) 12 months.

upvoted 0 times

...