Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ACFE Exam CFE-Law Topic 4 Question 53 Discussion

Actual exam question for ACFE's CFE-Law exam
Question #: 53
Topic #: 4
[All CFE-Law Questions]

Which of the following is NOT a requirement of the European Union's (EU) General Data Protection Regulation (GDPR)?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Aleshia at Dec 07, 2024, 11:19 AM

Limited Time Offer

25%

Off

Get Premium CFE-Law Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Margart
2 months ago
I'm stumped. This question is making my head spin more than a GDPR compliance audit! Time to phone a friend, I guess.
upvoted 0 times
Rebbecca
17 days ago
C) An organization generally must notify all affected data subjects without undue delay when a high-risk data breach occurs
upvoted 0 times
...
Rodolfo
28 days ago
B) An organization must have a documented lawful basis for collecting or processing personal data.
upvoted 0 times
...
Amie
1 months ago
A) An organization must delete a data subject's personal data automatically when the data are no longer in use.
upvoted 0 times
...
...
Weldon
2 months ago
You're right, that does make sense. It's important for organizations to have a lawful basis for collecting and processing personal data. So maybe the answer is D) An organization must confirm or deny that it possesses a data subject's personal data upon that individual's request.
upvoted 0 times
...
Maurine
2 months ago
D seems like the odd one out here. Confirming or denying data possession is a fundamental data subject right under the GDPR. Gotta be that one.
upvoted 0 times
Irma
29 days ago
D) An organization must confirm or deny that it possesses a data subject's personal data upon that individual's request
upvoted 0 times
...
Carylon
1 months ago
C) An organization generally must notify all affected data subjects without undue delay when a high-risk data breach occurs
upvoted 0 times
...
Celestine
1 months ago
B) An organization must have a documented lawful basis for collecting or processing personal data.
upvoted 0 times
...
Carmen
2 months ago
A) An organization must delete a data subject's personal data automatically when the data are no longer in use.
upvoted 0 times
...
...
Scarlet
2 months ago
But what about B) An organization must have a documented lawful basis for collecting or processing personal data? That seems like a requirement too.
upvoted 0 times
...
Weldon
2 months ago
I disagree, I believe the answer is A) An organization must delete a data subject's personal data automatically when the data are no longer in use.
upvoted 0 times
...
Zita
2 months ago
Hmm, I'm going with B. Having a lawful basis for data processing is a core GDPR requirement. The others all sound plausible too.
upvoted 0 times
Leslee
2 months ago
Yeah, having a documented lawful basis is a key aspect of GDPR compliance.
upvoted 0 times
...
Noble
2 months ago
I think B is correct too. It's important to have a lawful basis for collecting data.
upvoted 0 times
...
...
Joesph
2 months ago
Option A? Really? That can't be right - the GDPR definitely requires automatic deletion of personal data when it's no longer needed. This question is way too easy.
upvoted 0 times
Quentin
1 months ago
Option A? Really? That can't be right - the GDPR definitely requires automatic deletion of personal data when it's no longer needed. This question is way too easy.
upvoted 0 times
...
Paul
1 months ago
D) An organization must confirm or deny that it possesses a data subject's personal data upon that individual's request
upvoted 0 times
...
Tran
1 months ago
C) An organization generally must notify all affected data subjects without undue delay when a high-risk data breach occurs
upvoted 0 times
...
Bobbie
1 months ago
B) An organization must have a documented lawful basis for collecting or processing personal data.
upvoted 0 times
...
Val
2 months ago
A) An organization must delete a data subject's personal data automatically when the data are no longer in use.
upvoted 0 times
...
...
Scarlet
3 months ago
I think the answer is C) An organization generally must notify all affected data subjects without undue delay when a high-risk data breach occurs.
upvoted 0 times
...

Save Cancel