Free Isaca CDPSE Exam Questions

Become Isaca Certified with updated CDPSE exam questions and correct answers

Page: 1 / 48

Total 240 Questions | Updated On: Jun 17, 2026

Add To Cart

Question 1

Which of the following is the PRIMARY reason that a single cryptographic key should be used for only one purpose, such as encryption or authentication?

A : eliminates cryptographic key collision.

B : minimizes the risk if the cryptographic key is compromised.

C : is more practical and efficient to use a single cryptographic key.

D : ch process can only be supported by its own unique key management process.

Answer: C

Question 2

Which of the following is the BEST way to distinguish between a privacy risk and compliance risk?

A : rform a privacy risk audit.

B : nduct a privacy risk assessment.

C : lidate a privacy risk attestation.

D : nduct a privacy risk remediation exercise.

Answer: A

Question 3

What are the categories of risk treatment?

A : k avoidance, risk transfer, risk mitigation, and risk acceptance

B : k avoidance, risk treatment, risk mitigation, and risk acceptance

C : k avoidance, risk reduction, risk transfer, risk mitigation, and risk acceptance

D : k avoidance, risk transfer, and risk mitigation

Answer: B

Question 4

Which of the following is MOST likely to present a valid use case for keeping a customer's personal data after contract termination?

A : r the purpose of medical research

B : forthcoming campaign to win back customers

C : required retention period due to regulations

D : of onboarding when the customer returns

Answer: C

Question 5

The best first step in building privacy operations is:

A : Perform a risk assessment.

B : nduct a penetration test.

C : Identify requirements.

D : Perform data discovery.

Answer: C

Page: 1 / 48

Total 240 Questions | Updated On: Jun 17, 2026

Add To Cart