Professional Documents
Culture Documents
3F Rflib Dpa3
3F Rflib Dpa3
DECLARED PURPOSE.
B. THE PERSONAL INFORMATION SHALL BE
HELD UNDER STRICT CONFIDENTIALITY
AND SHALL BE USED ONLY FOR THE
DECLARED PURPOSE.
C. THE PERSONAL INFORMATION IS
REQUIRED BY THE DEPARTMENT OF
REESEARCH AND DEVELOPMENT
B 20 He shall implement reasonable and appropriate
(Sec 20) organizational, physical and technical measures
intended for the protection of personal information
against any accidental or unlawful destruction,
alteration and disclosure, as well as against any
other unlawful processing.
A. PERSONAL DATA PROCESSOR
B. PERSONAL DATA CONTROLLER
C. PERSONAL DATA PRIVACY
COMMISSIONER
A 21 Each personal information controller is
(Sec 21) responsible for
A. PERSONAL INFORMATION UNDER ITS
CONTROL OR CUSTODY
B. INFORMATION THAT IS FROM A THIRD
PARTY AFTER PROCESSING
C. INTERNATIONAL DATA SUBJECT TO
INTER-COMPANY TRANSACTIONS,
ARRANGEMENT AND COOPERATION
A 22 Who is responsible to all sensitive personal
(Sec 22) information maintained by the government, its
agencies and instrumentalities?
A. HEAD OF AGENCIES
B. DATA COLLECTOR
C. GOVERNMENT DATA COMMISSIONER
A 23 The transport or access sensitive personal
(Sec 23) information for purposes of off-site access approved
under this subsection shall be secured
by
A. THE USE OF THE MOST SECURE
ENCRYPTION
B. PROCESSING OF PERSONAL
INFORMATION AND SENSITIVE
PERSONAL INFORMATION FOR
UNAUTHORIZED PURPOSES
C. UNAUTHORIZED ACCESS OR
INTENTIONAL BREACH
C 30 It is an act where persons who, after having
(Sec 30) knowledge of a security breach and of the
obligation to notify the Commission intentionally or
by omission conceals the fact of such security
breach.
A. CONCEALMENT OF DATA BREACHES
INVOLVING SENSITIVE PERSONAL
INFORMATION
B. CONCEALMENT OF SECURITY BREACHES
INVOLVING SENSITIVE PUBLIC
INFORMATION
C. CONCEALMENT OF SECURITY BREACHES
INVOLVING SENSITIVE PERSONAL
INFORMATION
A 31 An act committed by any personal information
(Sec 31) controller or personal information processor or any
of its officials, employees or agents, who, with
malice or in bad faith, discloses unwarranted or
false information relative to any personal
information or personal sensitive information
obtained by him or her.
A. MALICIOUS DISCLOSURE
B. MALICIOUS DATA PROCESSING
C. BAD FAITH DISCLOSURE
A 32 Refers to the disclosure to a third party personal
(Sec 32) information without the consent of the data subject.
A. UNAUTHORIZED DISCLOSURE
B. MALICIOUS DISCLOSURE
C. PENDING DISCLOSURE
A 33 Which of the following statements is correct?
(Sec 33) A. ANY COMBINATION OR SERIES OF ACTS
AS DEFINED IN SECTIONS 25 TO 32 OF
THE DATA PRIVACY ACT SHALL MAKE THE
PERSON SUBJECT TO IMPRISONMENT
B. SUBSISTING
C. VALID BUT SUBSISTING
A 44 Which Act is amended in RA 10173?
(Sec 44) A. HUMAN SECURITY ACT OF 2007
B. DATA SECURITY ACT OF 2017
C. HUMAN PRIVACY ACT OF 1997
A 45 Data Privacy Act shall take effect fifteen (15) days
(Sec 45) ____________in at least two (2) national
newspapers of general circulation.
A. AFTER ITS PUBLICATION
B. BEFORE REPEAL
C. AFTER AMMENDMENT OF RA 9372