Info Social Feed Personal Data Protection Awareness re Interactive Content Options =) 1Page ©57:., In Progress Ry Objective-Type Quizzes & 40 Questions In Progress1/40 Section 1 Question 1 of 40 = During a web browsing session customer’s personal data is collected using cookies? WE TRUE B FALSE NextSection 1 Question 2 of 40 2140 While collecting a customer's personal information you must: Not collect personal information indiscriminately Not deceive or mislead individuals B_ about the purposes for collecting personal data Limit the amount and type of the information gathered to what is necessary for your identified purposes f All of the above NextSection 1 Question 3 of 40 = A relative of the customer approac 3/40 the branch for the account information of the customer. Which of the following step should be done? To give information to the relative of the customer Check the authorization letter, satisfy that it meets the bank’s policy requirement and share the personal information C_ Reject the request upfront D_ None of the above NextSection 1 Question 4 of 40 a i i bligati f Data Privacy is an obligation of __ 4140 ~ A Only Bank of Each Employee of the bank C None of the above D_ No one's responsibility NextSection 1 Question 5 of 40 = Mr. X went on leave the day after his meeting with an important client. b’c/49 should have done the following before his leave: A Keep the document with himself Submit the documents after his return from the leave. Go to office and submit the documents to the appropriate authority before proceeding on leave Hand it over to his colleague to deposit in office NextSection 1 Question 6 of 40 = Leaving confidential documents on unattended printers is correct practice 6/40 A TRUE @&” FALSEWho provide the data Who decide the purpose and means of processing the Data None of the above NextSection 1 Question 8 of 40 Which of the following does not constitute ‘sensitive data’ Data consisting of information about. 8/40 A an individual's religious beliefs B an individual's home address @ anindividual's political opinions D an individual's criminal convictions NextSection 1 Question 9 of 40 = Ms. T having an access to Finacle receives a call from Mr A, her friend, enquiring about a transaction in his account. What should be done in such a scenario: 9/40 A Provide the details as he is a friend B_ Turn down the request Direct him to the phone banking team as the process of customer identification is a pre-requisite. NextSection 1 Question 10 of 40 : Data Privacy is the responsibility of the employees of the organisation? J Yes B No NextSection 1 Question 11 of 40 = What is Data Minimisation? Identifying the minimum amount of personal data you need to collect to fulfil the specified purpose 11/40 Minimising the amount of data you hold of an individual C_ Do not take any Data D None NextSection 1 Question 12 of 40 = Device identifiers help us to, Identify the device through which login is made 12/40 B_ Identify the user behaviour A entify the location from where device is used D_ Allof the aboveSection 1 Question 13 of 40 What is the minimum fine for non-compliance under GDPR? Euro 20 million or up to 4% of Global turnover 13/40 Euro 50 million or up to 8% of Global turnover Euro 10 million or up to 2% of Global turnover NextSection 1 Question 14 of 40 = An employee of the Group Company seeks details of the bank customers, to cross sell their products. What should one do, in such a situation: Share the customer details with the staff of the Group Com pany as the details are getting share 14/40 within the Group itself. Deny sharing of the customer B details with the staff of Group Company Share the details of only those aS members who have opted for cross sell D BothA&B NextSection 1 Question 15 of 40 = from below is an example of Sensitive Personal A Name B_ Signature 15/40 & Religion D_ AddressSection 1 Question 16 of 40 Where we can find Personal data Protection Standard universe> Internal Process Management> Personal Data Breach Register> Report a personal Data Breach. ; ; 16/40 Universe> Reporting tools & ? Guidelines> Guidelines>Personal Data Protection Universe> Reporting tools & C Guidelines> Reporting tools> Report a personal Data Breach. NextSection 1 Question 17 of 40 = Can we share the customer data with | Pru/Lombard/I direct employees? A Yes, If employee is friend B No, if do not know the employee. Yes, if customer has given consent =— - 17/40 for sharing D_ Allof the aboveSection 1 Question 18 of 40 = Privacy Law in Dubai is termed as. Protection of Personal Information Act 4 Data Protection Law C California Consumer Privacy / 18/40 D_ DIFC Data Protection Law, 2020 NextSection 1 Question 19 of 40 Data Processor is One who process the Data on behalf of controller B One who collect the Data C Customer is a Data Processor 19/40 D None of the above NextThe bank has to delete all the information pertaining to the customer The bank can keep the entire details of the customer and can share it with others 20/40 The bank can keep the basic details as required by the regulator and maintain confidentiality The bank can keep the basic details as required by the regulator and share it with others NextSection 1 Question 21 of 40 In case customer wants his data not to be processed for direct marketing he may opt for A Right to object B_ Right to Data Portability C_ Right to restriction Right to stop automated decisi.t4° f makingSection 1 Question 22 of 40 Does sharing an existing customer's name and account balance with a prospective client amount to breach of data privacy a Yes B No 22/40 NextSection 1 Question 23 of 40 Consent should be A Freely given B_ Specific C Informed y All of above 23/40 NextSection 1 Question 24 of 40 = sharing customer/Employee Data with friends/Family will not lead to breach of data seve B FALSE NextSection 1 Question 25 of 40 = You need to email a spreadsheet containing personal data. How should you send it? Send it as a password protected A attachment with the password in the body of the mail Paste the information into the body of the email attachment and send the / Send it as a password protected password as a separate mail 25/40 Send the document as a standard attachment NextSection 1 Question 26 of 40 = Data Privacy module are designed to help the employee to protect the customer's Data. ov true B_ FALSE 26/40 NextSection 1 Question 27 of 40 = Where we can report a personal Data Breach incident universe> Internal Process | Management> Personal Data A . Breach Register> Report a personal Data Breach. Universe> Reporting tools & B Guidelines> Guidelines>Personal Data Protection Universe> Reporting tools & C Guidelines> Reporting tools> Report a personal Data Breact 27/40Section 1 Question 28 of 40 = While processing the sensitive Personal Data we must ensure that, A obtain explicit customers consent B For Lawful purpose adequate security measures in place DeAll of the above 28/40Section 1 Question 29 of 40 Which of the following is NOT a best practice for data privacy? Conducting regular training s for A employees B Keeping personal data secure and confidential c Do not share the password with other employees haring personal data freely with third-party companies 29/40 NextSection 1 Question 30 of 40 = What is the Privacy breach Compromise of customer mobile number Compromise of Bank account number C Compromise Aadhaar Number All of the above 30/40 NextObjective-Type Quizzes Section 1 Question 31 of 40 = Which Right gives customer the power to correct the personal data that they believe is inaccurate or to get incomplete personal data completed by providing a statement? A Right to Erasure B_ Right to Object Right to Automated Decision Making 7 Right to Rectification 31/40 NextObjective-Type Quizzes Section 1 Question 32 of 40 = What are not allowed to do with ‘sensitive data’? A Collect it without permission B_ Store it without permission Disclose it without appropriate checks J" of the above 32/40 NextSection 1 Question 33 of 40 some time it is ok to share your password with you colleagues A Yes B Only with Reporting manager C Only with Friend fd Never share with anyone 33/40 NextSection 1 Question 34 of 40 —_____________ ensures that personal data of individuals is processed lawfully and in fair manner ot” Privacy Principles B_ Data Subject Rights C_ Privacy Rules 34/40 NextSection 1 Question 35 of 40 = Data privacy is protection of following data in possession of the organisation. A Customer personal Data B_ Employee Data C_ Corporate Data Dm AaB 35/40Section 1 Question 36 of 40 Special category of data should be handled with due care as It is more sensitive than personal A data Disclosure of personal data might p result in loss of any benefit which otherwise would have availed by the Data Subject “GeeRath A &B D_ None of the above 36/40 NextSection 1 Question 37 of 40 = What out of the following is not a privacy breach Sharing copy of the passport of existing customer Sharing copy of the passport of B_ customers who have terminated the relationship Discuss personal information of C_ existing customers in public areas like café a None of the above 37/40Section 1 Question 38 of 40 a Bank makes a service call to the customer. But, the customer was not available on the call. It was answered by his wife. Wife is not a joint account holder. Wife desires to know the account balance of the customer. What should be done in such a scenario: A Deny the request plainly Inform the person who attended the call that since she is not the joint account holder details could not be shared with her. Accept the request on the basis of C_ relationship and share the details with her. 38/40 NextSection 1 Question 39 of 40 Any data that alone, or in combination with other information, can identify an individual. A May be B_ May Not be ome, 39/40 NextSection 1 Question 40 of 40 Would sharing of customer personal information, after termination of the relationship amount to breach in privacy Avrves 40/40