Before you use somebody’s data, do you need to get their approval (consent)?
When you are using your employees' social security number in an HR context, you are doing so based on which of the following legal grounds?
"Which of the following is true? A. Personal data retrieved from a public source can be used for direct marketing purposes, if that public source is the social media. B. Personal data made public by a person can without any condition be used for direct marketing purposes. Public information is for everyone to use."
"..by continuing to use this website you agree for us to use advertising cookies" is
Is direct marketing permitted under GDPR?
Can I make it mandatory for someone to share their name and e-mail address with my organisation, as a condition to participate in a free competition that my organisation launches, so that I can send out direct marketing material later?
The Records of Processing Activities is
Where a Controller RoPA is required and, where possible, it must contain which of the following?
The Records of Processing Activities must be kept regarding
In what form must a RoPA be maintained?
Someone's asking if my organisation is processing data on him. Do I have to answer?
Which of the following is true? Controller A must facilitate personal data transfer directly to Controller B where …
Should I inform the person that I am collecting personal data from them for direct marketing purposes?
"The data subject has the right to obtain from the controller confirmation as to whether or not personal data concerning them are being processed. Which of the below is considered personal data? A. Badge number B. Credit Score C. Names of the parents, mother tongue D. The story of clicks on your website, IP address"
Is it true that only companies having a website are required under GDPR to publish information (also often referred to as privacy notice) about their data processing?
Which of the following is true?
Is it true that a privacy notice has to be as complex as possible, to make sure every detail is included?
Is it good practice to copy a privacy notice that another organisation has published on its website?
Is it true that your organisaton´s privacy notice must include the name and contact details of your Data Protection Officer?