(Compliance)
What does 'data principal' refer to in the DPDP Act, 2023?
a) Company storing data
b) Entity processing data
c) Individual whose data it is
d) System encrypting data
c) Individual whose data it is
Which global body is responsible for setting standards for AML practices?
a) WTO,
b) IMF,
c) FATF,
d) World Bank
c) FATF
Why is 'social engineering' considered a significant threat to corporate cybersecurity?
a) Manipulating people to give info,
b) Malware via social media,
c) Hacking social accounts,
d) Creating fake user accounts
a) Manipulating people to give info
Which government body is responsible for enforcing the DPDP Act, 2023?
a) Reserve Bank of India,
b) Data Protection Board of India,
c) SEBI,
d) Ministry of Corporate Affairs
b) Data Protection Board of India
What does PEP stand for in the context of AML?
a) Public Exposure Policy,
b) Politically Exposed Person,
c) Personal Economic Profile,
d) Policy Evaluation Plan
b) Politically Exposed Person
What is common method cybercriminals use to gain unauthorized access to company systems?
a) Phishing emails,
b) Leaving computers unlocked,
c) Changing passwords regularly,
d) Using cloud storage
a) Phishing emails
What does 'purpose limitation' mean under DPDP Act?
a) Use data for internal purposes,
b) Use data for stated purposes,
c) Use for marketing,
d) Optimize services beyond consent
b) Use data for stated purposes
What is the minimum period for which financial institutions must keep records?
a) 6 months,
b) 1 year,
c) 5 years,
d) 10 years
c) 5 years
What is the purpose of a Virtual Private Network (VPN) in the context of corporate cybersecurity?
a) Block access to social media,
b) Encrypt internet traffic,
c) Speed up connections,
d) Manage advertising
b) Encrypt internet traffic