Free IAPP CIPT Exam Questions

Become IAPP Certified with updated CIPT exam questions and correct answers

Page: 1 / 53

Total 261 Questions | Updated On: Jun 17, 2026

Add To Cart

Question 1

An organization has recently experienced a data breach where large amounts of personal data were compromised. As part of a post-incident review, the privacy technologist wants to analyze available data to understand what vulnerabilities may have contributed to the incident occurring. He learns that a key vulnerability had been flagged by the system but that detective controls were not operating effectively. Which type of web application security risk does this finding most likely point to?

A : ecure Design.

B : configuration.

C : lnerable and Outdated Components.

D : gging and Monitoring Failures.

Answer: D

Question 2

An EU marketing company is planning to make use of personal data captured to make automated decisions based on profiling. In some cases, processing and automated decisions may have a legal effect on individuals, such as credit worthiness.

When evaluating the implementation of systems making automated decisions, in which situation would the company have to accommodate an individual's right NOT to be subject to such processing to ensure compliance under the General Data Protection Regulation (GDPR)?

A : When an individual's legal status or rights are not affected by the decision.

B : When there is no human intervention or influence in the decision-making process.

C : When the individual has given explicit consent to such processing and suitable safeguards exist.

D : When the decision is necessary for entering into a contract and the individual can contest the decision.

Answer: D

Question 3

Which of the following is an example of drone `swarming`?

A : A drone filming a cyclist from above as he rides.

B : A drone flying over a building site to gather data.

C : Drones delivering retailers' packages to private homes.

D : Drones communicating with each other to perform a search and rescue.

Answer: D

Question 4

What is the name of an alternative technique to counter the reduction in use of third-party cookies, where web publishers may consider utilizing data cached by a browser and returned with a subsequent request from the same resource to track unique users?

A : Web beacon tracking.

B : Browser fingerprinting.

C : Entity tagging.

D : Canvas fingerprinting.

Answer: B

Question 5

How does browser fingerprinting compromise privacy?

A : creating a security vulnerability.

B : differentiating users based upon parameters.

C : persuading users to provide personal information.

D : customizing advertising based on the geographic location.

Answer: B

Page: 1 / 53

Total 261 Questions | Updated On: Jun 17, 2026

Add To Cart