Free IAPP CIPP-US Exam Questions

Become IAPP Certified with updated CIPP-US exam questions and correct answers

Page: 1 / 41

Total 201 Questions | Updated On: Mar 05, 2026

Add To Cart

Question 1

What is the main purpose of the Global Privacy Enforcement Network (GPEN)?

A : promote universal cooperation among privacy authorities

B : investigate allegations of privacy violations internationally

C : protect the interests of privacy consumer groups worldwide

D : arbitrate disputes between countries over jurisdiction for privacy laws

Answer: A

Question 2

An organization self-certified under Privacy Shield must, upon request by an individual, do what?

A : pend the use of all personal information collected by the organization to fulfill its original purpose

B : ovide the identities of third parties with whom the organization shares personal information.

C : ovide the identities of third and fourth parties that may potentially receive personal information

D : Identify all personal information disclosed during a criminal investigation

Answer: B

Question 3

The Cable Communications Policy Act of 1984 requires which activity?

A : livery of an annual notice detailing how subscriber information is to be used

B : Destruction of personal information a maximum of six months after it is no longer needed

C : tice to subscribers of any investigation involving unauthorized reception of cable services

D : taining subscriber consent for disseminating any personal information necessary to render cable services

Answer: C

Question 4

Which of the following would NOT be considered a method of obtaining verifiable parental consent before collecting, using or disclosing personal information from children under the Children’s Online Privacy Protection Act (COPPA) of 1998?

A : ing a credit card, debit card, or other online payment system

B : ving the parent call a toll-free telephone number staffed by trained personnel.

C : Having the parent sign a consent form and return it to the operator by postal mail, facsimile, or electronic scan.

D : nding a text message to the parent explaining the intended uses of the information.

Answer: D

Question 5

Which of the following describes the most likely risk for a company developing a privacy policy with standards that are much higher than its competitors?

A : ing more closely scrutinized for any breaches of policy

B : tting accused of discriminatory practices

C : tracting skepticism from auditors

D : ving a security system failure

Answer: A

Page: 1 / 41

Total 201 Questions | Updated On: Mar 05, 2026

Add To Cart