CIPM EXAM QUESTIONS AND ANSWERS

What are the 5 phases of a privacy program audit - Answer- Planning, Preparation, Audit, Report, Followup What happens during the audit planning phase of PPARF? - Answer- Risk assessment, schedule, selecting auditor, pre-audit questionnaire, preparatory meeting/visit and checklist What happens during the Audit Preparation phase of PPARF? - Answer- Confirm schedule, confirm and prepare checklists, sampling criteria and audit plan What Happens during the Audit phase of PPARF? - Answer- Meeting and audit execution What happens during the report phase of PPARF? - Answer- Noncompliance records and categories (major/minor), audit report, closing meeting and distribution What happens during the followup phase of PPARF? - Answer- Confirm scope, schedule, methodology and closure What are the three types of privacy governance models? (privacy governance may be "___, _____, or ______." - Answer- Centralized, Localized, or Hybrid When creating your privacy office governance model, you should consider what 4 factors? - Answer- 1. existing organisational structure, 2. position and authority of the privacy team, 3. involvement level of senior leadership and internal stakeholder 4. The development of internal partnerships. What are the advantages/disadvantages of the hybrid governance model? - Answer- Advantage: Resources of larger centralized org Disadvantage: Decentralized decision making provides less big picture vision What are the 5 maturity levels of the GAPP Privacy Maturity Model? - Answer- 1. Ad Ho