DATA GOVERNANCE & CYBER SECURITY MODULE -2

Q: Which of the following is true:

A: Data Privacy is about the rules how to protect and use the contents

Q: An SBI Card employee sitting in an branch asks for list of high value customers
along with Mobile numbers for telecalling to sell SBI cards for the Branch. Branch
may share the list with SBI Card employee.
A: FALSE

Q: What is needed to create Data Quality Index?

A: Data quality rule and profiling results.

Q: Capturing of incorrect security in secured loan accounts may result in

_____________.
A: Both 1 & 2

Q: While verifying the pop-up name of PAN holder in CIF creation screen
A: 1 & 3

Q: As per Data Protection Bill (Draft) PII stands for

A: Personally Identifiable Information
I

Q: To boost the housing loan business of the branch , list of HNIs can be shared with
HLCs through:
A: Not to be shared

Q: India is coming with its own Bill on Data Protection which is called ___
A: Personal Data Protection Bill

Q: Project Ganga Dashboard include divergences related to:

A: Both DQ & KRI

Q: Branch has sanctioned a Car loan to one of his staff, but the loan instalment was
not fed in HRMS. The staff paid the instalment through his account and informed the
BM that a SI has been registered for the same.
A: Recovery to staff loan should be through HRMS only, so recovery details in
HRMS needs to be updated

Q: What are the impacts of feeding incorrect date of birth of a customer in CBS
A: 1& 2

Q: If a car dealer asks us for a list of customers having existing car loans, to market
loans for new cars for us, shall we share the list?
A: Cannot be shared

Q: DQI Index has been included as one of the Key Responsibility Areas (KRAs) in
Career Development System (CDS)
A: TRUE

Q: Data quality is necessary to fulfil the needs of an organization in terms of

A: All of the above

Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is to be considered as “Third Party”
A: All the above are to be treated as Third Parties
DATA GOVERNANCE & CYBER SECURITY MODULE -2

Q: Data Quality Index (DQI) dashboard measures the Data Quality for-
A: CIFs & Loans

Q: Updated policies or SOPs on Data Governance can be accessed through?

A: >>SBI Times>>MIS Online >>SOPs>>DMO

Q: For personal communication, we can use our official email IDs

A: FALSE

Q: Restricted access to Data means:

A: Both 1 & 2

Q: While inputting temporary address of a customer in CBS, it should be taken care

that
A: "From & To" date in the temporary screen needs to be filled in as declared by the
customer

Q: Some of the key Data Privacy initiatives include:

A: All of the above

Q: In the Data Infringement portal, unattended infringements on Data Loss

Prevention (DLP) may result in_____
A: Penal Score (1 to 4 marks) in RFIA of the Branch

Q: A staff can be held accountable for Data quality errors.

A: TRUE

Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is NOT to be considered as “Third Party”
A: Internal Auditors

Q: Customer sensitive Granular Data can be copied and stored without any approval
A: FALSE

Q: What are the two important pillars of the SOP on „Customer Sensitive Granular A:
Data Sharing and Access – Within Bank‟s Environment‟:
A: Regulated & Limited access

Q: What are the different categories of Data Classification

A: SENSITIVE, CONFIDENTIAL, INTERNAL, PUBLIC

Q: “Customer PII Data” is classified as ____________ Data

A: CONFIDENTIAL

Q: Impact of poor Data Quality on a Branch include ____

A: Both 1 & 2 above

Q: Which of the following is not one of the functions of an effective Data Loss
Prevention (DLP) program
A: Follow-up with Data users for Data Quality enhancement
DATA GOVERNANCE & CYBER SECURITY MODULE -2

Q: In an Account Opening Form, if Data has been provided by customer in non

mandatory field ( like mobile number /email ID ), what should be done while inputting
in CBS?
A: Input the Data exactly as given by the customer

Q: Sharing of customer sensitive granular Data is governed by which Policy :

A: Data Governance Policy

Q: Scope of Customer Sensitive Granular Data Sharing & Access Framework

covers:
A: All of the above

Q: For official purpose, if we are required to share customer sensitive data, then we
should:
A: Delete the data after use

Q: Which one is NOT an approved way of sharing granular Data/access Data under
normal circumstances:
A: E-mail

Q: Salient features of Project Ganga include:

A: Customer One view

Q: What are the impacts of not verifying the pop-up name of PAN holder, while
fetching PAN details
A: 1& 2

Q: Incorrect spelling of Customer name comes under which one of the following Data
Quality Dimension?
A: Accuracy

Q: What is needed to create Data Quality Index?

A: Data quality rule and profiling results.

Q: Restricted access to Data means:

A: Both 1 & 2

Q: Some of the key Data Privacy initiatives include:

A: All of the above

Q: What are the impacts of feeding incorrect date of birth of a customer in CBS
A: 1& 2

Q: Can we store customer data on our Desktop ?

A: NO

Q: Objectives of Data Quality are:

i. Accuracy, validity
ii.timeliness, completeness
iii.uniqueness, consistency
A: All of the above
DATA GOVERNANCE & CYBER SECURITY MODULE -2

Q: A customer has submitted Voter Card as OVD, along with AOF. During the
scrutiny, it was found that the age of customer is less than 18
A: DOB on OVD and AOF, if same, then only account may be opened

Q: Capturing of incorrect CRA rating / ECR in a loan account may result in _____
A: Both 1 & 2

Q: Error categories in DQI for CIF related errors are:

A: Risk categorization
B. Personal Profile
C. PAN Related
D. Gender Related
E. Age Related
A: All of the Above

Q: Capturing of incorrect interest rate in loan accounts may result in ____________

A: All of the above

Q: Non capturing of PAN in CIF, even if furnished in the AOF, may result in ___
A: Both 1 & 2

Q: If a car dealer asks us for a list of customers having existing car loans, to market
loans for new cars for us, shall we share the list?
A: Cannot be shared

Q: While inputting temporary address of a customer in CBS, it should be taken care

that
A: "From & To" date in the temporary screen needs to be filled in as declared by the
customer

Q: For personal communication, we can use our official email IDs

A: FALSE

Q: While verifying the pop-up name of PAN holder in CIF creation screen
A: 1 & 3

Q: The access to Customer Sensitive Granular Data to the users should be made
strictly on the basis of-
A: Both 1 & 2

Q: Which of the following is not a type of Data leak

A: Improper categorization of sensitive Data

Q: As per the Bank‟s approved “SOP on Data Sharing with External Agencies/ Third
Parties” which of the following is to be considered as “Third Party”
A: All the above are to be treated as Third Parties

Q: “SBI telephone directory” is classified as ____________ Data

A: INTERNAL

Q: What are the possible means by which Customer Sensitive Granular Data can get
divulged or leaked to any unrelated person / third party like vendors, dealers etc:
A: All of the above