Question: 1
A processor is instructed to report on customers who bought a product both last month and at least once in the three months before that Unfortunately, the processor makes a mistake and uses personal data collected by another controller for a different purpose.
The mistake is found before the report is created, and nobody had access to personal date he or she should not have had access to.
How should the processor act on this situation and what should the controller do if anything?
Question: 2
The Supervisory Authority is notified whenever an organization intends to process personal data, except for some specific situations. The Supervisory Authority keeps a publicly accessible register of these data processing operations.
What else is a legal obligation of the Supervisory Authority in reaction to such a not ideation?
Question: 3
Someone regularly receives offers from a store where he purchased something five years ago.
He wants the company to stop sending offers and to wipe his personal data.
Which aspect of the right of a data subject in the General Data Protection Regulation (GDRP) requires the company to comply?
Question: 4
Important technical requirements set out in the General Data Protection Regulation (GDPR) are about quality. One is the obligation to ensure appropriate security, including protection against authentication against unauthorized or unlawful processing.
What is another important technician requirement?
Question: 5
According to the GDPR, what is a mandatory topic in a report?