Free Isaca CDPSE Exam Questions

Become Isaca Certified with updated CDPSE exam questions and correct answers

Page: 1 / 48

Total 240 Questions | Updated On: May 12, 2026

Add To Cart

Question 1

The best first step in building privacy operations is:

A : Perform a risk assessment.

B : nduct a penetration test.

C : Identify requirements.

D : Perform data discovery.

Answer: C

Question 2

Which of the following scenarios poses the GREATEST risk to an organization from a privacy perspective?

A : organization lacks a hardware disposal policy.

B : ails are not consistently encrypted when sent internally.

C : ivacy training is carried out by a service provider.

D : organization's privacy policy has not been reviewed in over a year.

Answer: D

Question 3

A privacy manager is attending a planning meeting in which marketing personnel argue for the collection of PII from customers that

may be used sometime in the future. How should the privacy manager respond?

A : rmit the collection of the additional PII fields.

B : quire that the additional PII fields be encrypted.

C : date the data retention schedule to include the additional PII fields.

D : rbid the collection of the additional PII fields.

Answer: D

Question 4

Which of the following is the BEST way to distinguish between a privacy risk and compliance risk?

A : rform a privacy risk audit.

B : nduct a privacy risk assessment.

C : lidate a privacy risk attestation.

D : nduct a privacy risk remediation exercise.

Answer: A

Question 5

Which of the following is the PRIMARY reason that a single cryptographic key should be used for only one purpose, such as encryption or authentication?

A : eliminates cryptographic key collision.

B : minimizes the risk if the cryptographic key is compromised.

C : is more practical and efficient to use a single cryptographic key.

D : ch process can only be supported by its own unique key management process.

Answer: C

Page: 1 / 48

Total 240 Questions | Updated On: May 12, 2026

Add To Cart