CIPP/US Exam Questions and Answers
Graded A+
Access - Correct answer-The ability to view personal information held by an
organization. This may be supplemented by allowing updates or corrections to the
information. U.S. laws often provide for access and correction when the
information is used for any type of substantive decision making, such as for credit
reports.
Americans with Disabilities Act (ADA) - Correct answer-Bars discrimination
against qualified individuals with disabilities; places restrictions on pre-
employment medical screening.
Consumer Financial Protection Bureau (CFPB) - Correct answer-Has enforcement
power for unfair, deceptive or abusive acts and practices for financial institutions.
Choice - Correct answer-The ability to specify whether personal information will
be collected and/or how it will be used or disclosed. Choice can be express or
implied.
©COPYRIGHT 2025, ALL RIGHTS RESERVED 1
,Common Law - Correct answer-Legal principles that have developed over time in
judicial decisions (case law), often drawing on social customs and expectations.
Consent Decree - Correct answer-A judgment entered by consent of the parties (a
federal or state agency and an adverse party) whereby the defendant agrees to stop
alleged illegal activity, typically without admitting guilt or wrongdoing.
Consumer Reporting Agency (CRA) - Correct answer-Any person or entity that
complies or evaluates personal information for the purpose of furnishing consumer
reports to third parties for a fee.
Data Breach - Correct answer-The intentional or unintentional release of secure
information to an untrusted environment.
Data Classification - Correct answer-Defines the clearance of individuals who can
access or handle a given set of data, as well as the baseline level of protection that
is appropriate for that data.
Deceptive Trade Practices - Correct answer-Along with unfair trade practices,
behavior of an organization that can be enforced against by the FTC.
Defamation - Correct answer-Any act or communication intending to harm the
reputation of another as to lower him in the estimation of the community or to
deter third persons from associating or dealing with him.
©COPYRIGHT 2025, ALL RIGHTS RESERVED 2
, Electronic Discovery (e-discovery) - Correct answer-Discovery in civil litigation
dealing with the exchange of information in electronic format, often requiring
digital forensics analysis.
Electronically Stored Information (ESI) - Correct answer-A category of
information that can include e-mail, word-processing documents, server logs,
instant messaging transcripts, voicemail systems, social networking records, thumb
drives, or data on SD cards.
Equal Employment Opportunity Commission (EEOC) - Correct answer-A federal
agency overseeing many laws preventing discrimination in the workplace, include
Title VII of the Civil Rights Act, the Age Discrimination in Employment Act of
1967 (ADEA) and Titles I and V of the Americans with Disabilities Act of 1990
(ADA).
Evidentiary Privilege - Correct answer-Privileges limiting or prohibiting disclosure
of personal information in the context of investigations and litigation, such as
attorney-client privilege.
Fair Credit Reporting Act (FCRA) - Correct answer-Enacted in 1970 to regulate
the consumer reporting industry and provide privacy rights in consumer reports,
FCRA mandates accurate and relevant data collection, provides consumers with the
©COPYRIGHT 2025, ALL RIGHTS RESERVED 3
Graded A+
Access - Correct answer-The ability to view personal information held by an
organization. This may be supplemented by allowing updates or corrections to the
information. U.S. laws often provide for access and correction when the
information is used for any type of substantive decision making, such as for credit
reports.
Americans with Disabilities Act (ADA) - Correct answer-Bars discrimination
against qualified individuals with disabilities; places restrictions on pre-
employment medical screening.
Consumer Financial Protection Bureau (CFPB) - Correct answer-Has enforcement
power for unfair, deceptive or abusive acts and practices for financial institutions.
Choice - Correct answer-The ability to specify whether personal information will
be collected and/or how it will be used or disclosed. Choice can be express or
implied.
©COPYRIGHT 2025, ALL RIGHTS RESERVED 1
,Common Law - Correct answer-Legal principles that have developed over time in
judicial decisions (case law), often drawing on social customs and expectations.
Consent Decree - Correct answer-A judgment entered by consent of the parties (a
federal or state agency and an adverse party) whereby the defendant agrees to stop
alleged illegal activity, typically without admitting guilt or wrongdoing.
Consumer Reporting Agency (CRA) - Correct answer-Any person or entity that
complies or evaluates personal information for the purpose of furnishing consumer
reports to third parties for a fee.
Data Breach - Correct answer-The intentional or unintentional release of secure
information to an untrusted environment.
Data Classification - Correct answer-Defines the clearance of individuals who can
access or handle a given set of data, as well as the baseline level of protection that
is appropriate for that data.
Deceptive Trade Practices - Correct answer-Along with unfair trade practices,
behavior of an organization that can be enforced against by the FTC.
Defamation - Correct answer-Any act or communication intending to harm the
reputation of another as to lower him in the estimation of the community or to
deter third persons from associating or dealing with him.
©COPYRIGHT 2025, ALL RIGHTS RESERVED 2
, Electronic Discovery (e-discovery) - Correct answer-Discovery in civil litigation
dealing with the exchange of information in electronic format, often requiring
digital forensics analysis.
Electronically Stored Information (ESI) - Correct answer-A category of
information that can include e-mail, word-processing documents, server logs,
instant messaging transcripts, voicemail systems, social networking records, thumb
drives, or data on SD cards.
Equal Employment Opportunity Commission (EEOC) - Correct answer-A federal
agency overseeing many laws preventing discrimination in the workplace, include
Title VII of the Civil Rights Act, the Age Discrimination in Employment Act of
1967 (ADEA) and Titles I and V of the Americans with Disabilities Act of 1990
(ADA).
Evidentiary Privilege - Correct answer-Privileges limiting or prohibiting disclosure
of personal information in the context of investigations and litigation, such as
attorney-client privilege.
Fair Credit Reporting Act (FCRA) - Correct answer-Enacted in 1970 to regulate
the consumer reporting industry and provide privacy rights in consumer reports,
FCRA mandates accurate and relevant data collection, provides consumers with the
©COPYRIGHT 2025, ALL RIGHTS RESERVED 3
