Free IAPP CIPP-C Exam Questions

Become IAPP Certified with updated CIPP-C exam questions and correct answers

Page: 1 / 31

Total 152 Questions | Updated On: Jul 29, 2025

Add To Cart

Question 1

Which entities must comply with the Telemarketing Sales Rule?

A : r-profit organizations and for-profit telefunders regarding charitable solicitations

B : nprofit organizations calling on their own behalf

C : r-profit organizations calling businesses when a binding contract exists between them

D : r-profit and not-for-profit organizations when selling additional services to establish customers

Answer: D

Question 2

Which of the following types of information would an organization generally NOT be required to disclose to

law enforcement?

A : formation about medication errors under the Food, Drug and Cosmetic Act

B : ney laundering information under the Bank Secrecy Act of 1970

C : formation about workspace injuries under OSHA requirements

D : rsonal health information under the HIPAA Privacy Rule

Answer: D

Question 3

Which of the following best describes an employer’s privacy-related responsibilities to an employee who has

left the workplace?

A : An employer has a responsibility to maintain a former employee’s access to computer systems andcompany data needed to support claims against the company such as discrimination.

B : An employer has a responsibility to permanently delete or expunge all sensitive employment records tominimize privacy risks to both the employer and former employee.

C : An employer may consider any privacy-related responsibilities terminated, as the relationship betweenemployer and employee is considered primarily contractual.

D : An employer has a responsibility to maintain the security and privacy of any sensitive employmentrecords retained for a legitimate business purpose.

Answer: B

Question 4

Acme Student Loan Company has developed an artificial intelligence algorithm that determines whether an

individual is likely to pay their bill or default. A person who is determined by the algorithm to be more likely

to default will receive frequent payment reminder calls, while those who are less likely to default will not

receive payment reminders.

Which of the following most accurately reflects the privacy concerns with Acme Student Loan Company using

artificial intelligence in this manner?

A : If the algorithm uses risk factors that impact the automatic decision engine. Acme must ensure that thealgorithm does not have a disparate impact on protected classes in the output.

B : If the algorithm makes automated decisions based on risk factors and public information, Acme need notdetermine if the algorithm has a disparate impact on protected classes.

C : If the algorithm’s methodology is disclosed to consumers, then it is acceptable for Acme to have adisparate impact on protected classes.

D : If the algorithm uses information about protected classes to make automated decisions, Acme mustensure that the algorithm does not have a disparate impact on protected classes in the output.

Answer: B

Question 5

Which of the following is an important implication of the Dodd-Frank Wall Street Reform and Consumer

Protection Act?

A : nancial institutions must avoid collecting a customer’s sensitive personal information

B : Financial institutions must help ensure a customer’s understanding of products and services

C : nancial institutions must use a prescribed level of encryption for most types of customer records

D : nancial institutions must cease sending e-mails and other forms of advertising to customers who opt out of direct marketing

Answer: B

Page: 1 / 31

Total 152 Questions | Updated On: Jul 29, 2025

Add To Cart