Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CIPM > Chapter 7 - Sustain > Flashcards

Chapter 7 - Sustain Flashcards

1
Q

What characteristics should metrics contain

A

They should be simple, quantifiable and easy to use with correlation to business performance and operational goals

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Define the characteristics of a metric measurement system

A

Easy to understand, repeatable and reflective of relevant indicators to the business

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How do metrics help a business achieve its objectives

A
  1. Facilitate conversations with leaders and non privacy professionals
  2. Eliminate terminology and jargon by being simple
  3. Consider but not be based on certain technologies
  4. Matures privacy programs
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

According to a 2020 IAPP survey what are the most popularly used metrics?

A
  1. None (20 pct)
  2. Incident response metrics (58 pct)
  3. Pia/dpia (57)
  4. Training and awareness metrics (56)
  5. DSAR (56)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are differences between trend analysis and cyclical component analysis and irregular component

A

Trend attempts to spot a patters in the period over a period whereas cyclical focuses on regular fluctuations (ie complaints made after rolling out training) and irregular component focuses on what is left over when other components are removed (noise analysis)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are the 5 levels of of the PMM (privacy maturity model)

A

Ad hoc (nothing formal)
Repeatable (formal but incomplete and not implemented)
Defined (formal and implemented)
Managed (reviews are conducted)
Optimised (regular review and feedback)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What does section 39 of gdpr stipulate?

A

Monitoring responsibilities of the DPO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the different types of monitoring?

A
  1. Compliance monitoring (ie audits to monitor compliance)
  2. Regulation monitoring (ie Afriwise)
  3. Environment monitoring (monitor internal and external environment for threats)
  4. Training monitoring
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What are the different forms of monitoring?

A
  1. Tools monitoring
  2. Audits
  3. Breaches
  4. Complaints
  5. Breaches
  6. Data retention
  7. Controls
  8. HR
  9. Vendors
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What are the 4 common approaches to compliance monitoring?

A
  1. Self monitoring
  2. Audit management
  3. Security and system management
  4. Risk management
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the difference between an audit and an assessment?

A

An audit is evidence based

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What events may trigger an audit?

A
  1. Periodic assurance that is evidence based
  2. In response to change
  3. In response to events : breaches
  4. If required by a regulator
  5. As a result of a risk assessment
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the 5 stages of an audit?

A
  1. Plan
  2. Prepared
  3. Audit
  4. Report
  5. Follow up
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the three forms of audit

A
  1. First party (support self certifications)
  2. Second party (ie we audit a supplier)
  3. Third party (ie independent)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CIPM (7 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions