Free Preparation Discussions
MENU
Exin PDPF Exam Questions
- Topic 1: Right to Object and Automated Individual Decision-Making/ Data Protection history in ‘birds view’
- Topic 2: Purpose Limitation and Purpose Specification/ Definitions and Historical Context
- Topic 3: Legitimate Grounds and Purpose Limitation/ Right to restriction of processing
- Topic 4: Material and territorial scope of the GDPR/ Lawfulness, Fairness and Transparency
- Topic 5: Regulation versus Directive/ Transparent Information, Communication and Modalities
- Topic 6: Direct, indirect, pseudonymized personal data/ Processing of Personal Data
- Topic 7: Information to be provided to the data subject in any case/ Legitimate Grounds for Processing
- Topic 8: Information on and Access to Personal Data/ Information to be provided to the data subject when transferring personal data
- Topic 9: Right of Access (Inspection) by the Data Subject/ Automated individual decision-making, including profiling
Free Exin PDPF Exam Actual Questions
Note: Premium Questions for PDPF were last updated On Mar. 11, 2026 (see below)
What is the definition of privacy related to the General Data protection Regulation (GDPR)?
A controller wants to outsource processing of personal data to a processor. What must be done before outsourcing?
The controller must ask the supervisory authority for permission to outsource the processing of the data. Incorrect. The controller does not have to ask the supervisory authority for permission for each instance of outsourcing.
The controller must ask the supervisory authority if the agreed written contract is compliant with the regulations. Incorrect. The supervisory authority is not a legal counsel and will not check contracts for compliance.
The controller and processor must draft and sign a written contract guaranteeing the confidentiality of the data. Correct. There must be a written contract guaranteeing the confidentiality of the data, listing the purposes and means of processing as defined by the controller and specifying that processor will only process on instruction of the controller. Both parties must sign this contract. (Literature: A, Chapter 8; GDPR Article 28 (3))
The processor must show the controller that all demands agreed in the service level agreement (SLA) are met. Incorrect. An SLA is not enough as it will focus on operations, not necessarily on purposes.
A controller asks a processor to produce a report containing customers who have purchased a particular product more than once in the past 6 months.
The processor provides services to several companies (which in this case are the controllers).
When generating the requested report, it uses customer data collected by another controller, that is, for a different purpose.
Fortunately, the error is noticed in time, the report is not sent, and nobody has had access to this dat
a. In this case, how does the processor need to proceed and what action should the controller take?
In the example there is likely to be no risk to the data subjects or if it exists it will be very low, but this does not exempt the processor from notifying the Controller. However, at least the Controller should assess whether there is a need to notify the Supervisory Authority.
Someone regularly receives offers from a store where he purchased something five years ago. He wants the company to stop sending offers and to wipe his personal data.
Which aspect of the rights of a data subject in the General Data Protection Regulation (GDPR) requires the company to comply?
Which of the following conflicts with the principle of limiting the purposes?
The principle of limitation of purposes says that personal data must be collected for specific, explicit and legitimate purposes and cannot be further processed in a way incompatible with those purposes.
When the data is sold to another company, we can conclude that it was acquired by a controller for a specific purpose and that it subsequently sold it without the owner's knowledge and consent.
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Carlee
5 days agoSheridan
12 days agoMarlon
20 days agoSean
28 days agoLouvenia
1 month agoGearldine
1 month agoCorinne
2 months agoAudra
2 months agoDonette
2 months agoCarlene
2 months agoDawne
3 months agoAmalia
3 months agoStevie
3 months agoDenae
3 months agoIdella
4 months agoSabrina
4 months agoGeorgiana
4 months agoStefan
4 months agoGwenn
5 months agoPa
5 months agoRonnie
5 months agoMitsue
5 months agoArlette
6 months agoJaime
6 months agoLaurene
6 months agoCarin
6 months agoAnnabelle
6 months agoSharee
8 months agoMagnolia
9 months agoRolland
9 months agoCarman
10 months agoGiuseppe
11 months agoIsabella
11 months agoCarmen
12 months agoStacey
12 months agoEdwin
1 year agoJeanice
1 year agoElly
1 year agoDeandrea
1 year agoMargarett
1 year agoYen
1 year agoAlyssa
1 year agoTamra
1 year agoElbert
1 year agoRicarda
1 year agoThea
1 year agoAmber
1 year agoLawrence
1 year agoNoah
1 year agoRima
1 year agoCorinne
1 year agoGlenn
1 year agoPura
1 year agoRex
1 year agoAlberto
1 year agoGerri
1 year agoXochitl
1 year agoProvidencia
1 year agoBuck
1 year agoVerlene
1 year agoGearldine
2 years agoDahlia
2 years agoSabina
2 years agoChara
2 years agoMargery
2 years agoLisandra
2 years ago