General
Data
Protection
Regulation
AMC ACTIONS
100

Citizens of these 2 countries are not protected by the GDPR regulation: 

Belgium, U.K, Poland, Russia, United States

Russia, United States

100

This is the term for the group/entity that operates on a organization's direction on how to collect data etc.

Data processor

100

AMC clients do not have to worry about GDPR as they are not-for-profit.

FALSE

100

This is the year the law went into effect

2018

100

You get a request from a client team to read the privacy policy to give your approval. What do you do?

Gently suggest that this is the purview of lawyers and that they should contact their legal counsel. As it relates to the IT aspects refer them to Angel & Vish.

200

This US State has passed a law similar to GDPR

California

200

This is the term for data that can be used to identify a person

Personal Data

200

This is the term used to describe the rights of an individual's data being used ONLY by the people that should sue it & for the PURPOSE it was provided.

PRIVACY

200

This is the number of days AMC clients have to fulfill a request from a EU citizen for a report of all data the organization has collected and how they have used it & who they have shared it with.

30 days

200

AMC has suggested these three things be done by clients

Data Mapping, User Journey Mapping, Policy writing

300

Photographs of customers at an international conference is not subject to GDPR from a data perspective

FALSE.

300

This is the term used in IT parlance to keep an organization's interests in the wrong hands

SECURITY

300

AMC Clients have these many hours to report a data breach to European citizens

72 hrs

300

AMC will cover the cost of GDPR compliance efforts as this is an IT matter.

No. This is a compliance matter & a business decision first which has IT & operational consequences.  

400

At the minimum an organization is supposed to have this policy that safeguards interests of their customers

PRIVACY POLICY

400

This is the penalty for EACH instance of non compliance

4% of annual revenue or 20M Euros

400

Personify service pack will NOT do the following: Ask customers for consent, Create a report of data in Personify, Track data being sent to outside sources, Anonymize records based on request, Auto report breaches.

Track data being sent to outside sources, Auto report breaches

500

AMC is NOT going to help clients do this: Data mapping, Customer Journey Mapping, Write policies, Create operational procedures for handling EU customer complaints/DSAR's

Write policies.