APEC privacy framework envisages common principles such as Notice, Collection limitation, Use
Limitation, Access and Correction, Security/Safeguards, and Accountability. But it differs from the EU
Data Protection Directive in which of the below aspect?
Question No 2
A multinational company with operations in several parts within EU and outside EU, involves
international data transfer of both its employees and customers. In some of its EU branches, which
are relatively larger in size, the organization has a works council. Most of the data transferred is
personal, and some of the data that the organization collects is sensitive in nature, the processing of
some of which is also outsourced to its branches in Asian countries.
Which of the following are not mandatory pre - requisite before transferring sensitive personal data to
its Asian branches?
Question No 3
A multinational company with operations in several parts within EU and outside EU, involves
international data transfer of both its employees and customers. In some of its EU branches, which
are relatively larger in size, the organization has a works council. Most of the data transferred is
personal, and some of the data that the organization collects is sensitive in nature, the processing of
some of which is also outsourced to its branches in Asian countries.
For exporting EU branch employees’ data to Asian Countries for processing, which of the following
instruments could be used for legal data transfer?
Question No 4
A multinational company with operations in several parts within EU and outside EU, involves
international data transfer of both its employees and customers. In some of its EU branches, which
are relatively larger in size, the organization has a works council. Most of the data transferred is
personal, and some of the data that the organization collects is sensitive in nature, the processing of
some of which is also outsourced to its branches in Asian countries.
For the outsourced work of its customers’ data processing, in order to initiate data transfer to
another organizations outside EU, which is the most appropriate among the following?
Question No 5
With reference to APEC privacy framework, when personal information is to be transferred to
another person or organization, whether domestically or internationally, “the ______________
should obtain the consent of the individual and exercise due diligence and take reasonable steps to
ensure that the recipient person or organization will protect the information consistently with APEC
information privacy principles”.