Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ACFE Exam CFE-Law Topic 2 Question 55 Discussion

Actual exam question for ACFE's CFE-Law exam
Question #: 55
Topic #: 2
[All CFE-Law Questions]

Which of the following is NOT a requirement of the European Union's (EU) General Data Protection Regulation (GDPR)?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Theodora at Jan 26, 2025, 07:37 PM

Limited Time Offer

25%

Off

Get Premium CFE-Law Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Carman
3 days ago
I see your point, Laquanda. But I still think C is the correct answer.
upvoted 0 times
...
Frederica
15 days ago
I'm going with D as the answer. GDPR gives data subjects the right to access their personal information.
upvoted 0 times
...
Candida
20 days ago
I'm not sure, but I think the answer is D.
upvoted 0 times
...
Loreta
21 days ago
Haha, I bet the person who wrote option A was still using a fax machine. GDPR is all about data protection, not auto-deletion!
upvoted 0 times
Chan
7 days ago
User 2: Yeah, GDPR is more about protecting data and giving individuals control over their personal information.
upvoted 0 times
...
Dannie
9 days ago
User 1: Option A is definitely not a requirement of GDPR. It doesn't make sense to automatically delete data.
upvoted 0 times
...
...
Caitlin
23 days ago
C is definitely wrong. Notifying affected individuals of high-risk breaches is a GDPR mandate.
upvoted 0 times
...
Laquanda
23 days ago
I disagree, I believe the answer is A.
upvoted 0 times
...
Taryn
27 days ago
B seems like the correct answer to me. Having a documented lawful basis is a core GDPR requirement.
upvoted 0 times
...
Cary
28 days ago
I think option A is incorrect. GDPR requires organizations to delete personal data when it's no longer needed.
upvoted 0 times
German
5 days ago
C) An organization generally must notify all affected data subjects without undue delay when a high-risk data breach occurs
upvoted 0 times
...
Coletta
7 days ago
Yes, you're right. Option A is not a requirement of the GDPR. It's important for organizations to delete personal data when it's no longer necessary.
upvoted 0 times
...
Coletta
11 days ago
I agree, option A is incorrect. GDPR actually requires organizations to delete personal data when it's no longer needed.
upvoted 0 times
...
Johana
21 days ago
B) An organization must have a documented lawful basis for collecting or processing personal data.
upvoted 0 times
...
Carri
24 days ago
A) An organization must delete a data subject's personal data automatically when the data are no longer in use.
upvoted 0 times
...
...
Carman
1 months ago
I think the answer is C.
upvoted 0 times
...

Save Cancel