GDPR Exam Dumps | Scenario: A financial institution collectsbiometric data of its clients, such asface recognition, to

Home
PECB
PECB Certified Data Protection Officer
PECB.GDPR.v2025-06-16.q41
Question 38

Valid GDPR Dumps shared by ExamDiscuss.com for Helping Passing GDPR Exam! ExamDiscuss.com now offer the newest GDPR exam dumps, the ExamDiscuss.com GDPR exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com GDPR dumps with Test Engine here:

Access GDPR Dumps Premium Version
(84 Q&As Dumps, 35%OFF Special Discount Code: freecram)

<< Prev Question Next Question >>

Question 38/41

Scenario:
A financial institution collectsbiometric data of its clients, such asface recognition, to support apayment authentication processthat they recently developed. The institution ensures thatdata subjects provide explicit consentfor the processing of theirbiometric datafor this specific purpose.
Question:
Based on this scenario, should theDPO advise the organization to conduct a DPIA (Data Protection Impact Assessment)?

A. Yes, because biometric data is consideredspecial category personal data, and its processing is likely to involvehigh risk.

B. No, becauseexplicit consenthas already been obtained from the data subjects.

C. No, because DPIAs areonly requiredwhen processing personal dataon a large scale, which is not specified in this case.

D. Yes, but only if the biometric data is storedfor more than five years.

Correct Answer: A

UnderArticle 35(3)(b) of GDPR, aDPIA is mandatoryfor processing that involveslarge-scale processing of special category data, including biometric data. Even ifexplicit consentis obtained,the risks associated with biometric processing require further evaluation.
* Option A is correctbecausebiometric data processing poses high risks to fundamental rights and freedoms, necessitating a DPIA.
* Option B is incorrectbecauseobtaining consent does not eliminate the requirement to conduct a DPIA.
* Option C is incorrectbecauseDPIAs are required for biometric processing regardless of scaleif risks are present.
* Option D is incorrectbecausestorage duration is not a determining factor for DPIA requirements.
References:
* GDPR Article 35(3)(b)(DPIA requirement for special category data)
* Recital 91(Processing biometric data requires special safeguards)

Your email address will not be published. Required fields are marked *

Comment: *

Name: *

Email: *

Rating: *

Verification: *

Question List (41q): Question 1: Scenario5: Recpond is a German employment recruiting company...; Question 2: Scenario7: Scenario 7: EduCCS is an online education platfor...; Question 3: Question: According toArticle 82 of GDPR, when must aprocess...; Question 4: Scenario1: MED is a healthcare provider located in Norway. I...; Question 5: Scenario 7: EduCCS is an online education platform based in ...; Question 6: Scenario:2 Soyled is a retail company that sells a wide rang...; Question 7: Scenario 8:MA store is an online clothing retailer founded i...; Question 8: Question: All the statements below regarding thelawfulness o...; Question 9: Scenario:2 Soyled is a retail company that sells a wide rang...; Question 10: Scenario3: COR Bank is an international banking group that o...; Question 11: Scenario5: Recpond is a German employment recruiting company...; Question 12: Scenario 9:Soin is a French travel agency with the largest n...; Question 13: Scenario: Socianis a softwareused to collect medical records...; Question 14: When pseudonymization is used in a dataset, the data is divi...; Question 15: Question: Based onArticle 58 of GDPR, whatpowersmust thesupe...; Question 16: Scenario5: Recpond is a German employment recruiting company...; Question 17: Scenario1: MED is a healthcare provider located in Norway. I...; Question 18: Scenario: Aclinical research organizationcollects and proces...; Question 19: Scenario: PickFoodis an onlinefood delivery servicethat allo...; Question 20: Scenario 7: EduCCS is an online education platform based in ...; Question 21: Scenario4: Berc is a pharmaceutical company headquartered in...; Question 22: Scenario4: Berc is a pharmaceutical company headquartered in...; Question 23: Scenario3: COR Bank is an international banking group that o...; Question 24: Scenario 8:MA store is an online clothing retailer founded i...; Question 25: Question: UnderGDPR, the controller must demonstrate thatdat...; Question 26: Scenario: BookStis anonline bookshopthat collectspersonal da...; Question 27: An organization suffered a personal data breach. The attacke...; Question 28: Question: What is therole of the DPO in a DPIA?...; Question 29: Scenario: ChatBubbleis a software company that stores person...; Question 30: Scenario:2 Soyled is a retail company that sells a wide rang...; Question 31: Scenario3: COR Bank is an international banking group that o...; Question 32: Scenario4: Berc is a pharmaceutical company headquartered in...; Question 33: Question: What is themain purpose of conducting a DPIA?...; Question 34: Question: Which of the following options is theDPO's respons...; Question 35: Scenario 9:Soin is a French travel agency with the largest n...; Question 36: Question: What can beincludedin a DPIA?...; Question 37: Scenario4: Berc is a pharmaceutical company headquartered in...; Question 38: Scenario: A financial institution collectsbiometric data of ...; Question 39: Scenario 9:Soin is a French travel agency with the largest n...; Question 40: Question: You work in a company that providestraining servic...; Question 41: Scenario: An organization has been using astorage transfer s...

[×]

Download PDF File

Enter your email address to download PECB.GDPR.v2025-06-16.q41.pdf

Email:

Disclaimer:
Freecram doesn't offer Real GIAC Exam Questions. Freecram doesn't offer Real SAP Exam Questions. Freecram doesn't offer Real (ISC)² Exam Questions. Freecram doesn't offer Real CompTIA Exam Questions. Freecram doesn't offer Real Microsoft Exam Questions.
Oracle and Java are registered trademarks of Oracle and/or its affiliates.
Freecram material do not contain actual actual Oracle Exam Questions or material.
Microsoft®, Azure®, Windows®, Windows Vista®, and the Windows logo are registered trademarks of Microsoft Corporation.
Freecram Materials do not contain actual questions and answers from Cisco's Certification Exams. The brand Cisco is a registered trademark of CISCO, Inc.
CFA Institute does not endorse, promote or warrant the accuracy or quality of these questions. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Freecram does not offer exam dumps or questions from actual exams. We offer learning material and practice tests created by subject matter experts to assist and help learners prepare for those exams. All certification brands used on the website are owned by the respective brand owners. Freecram does not own or claim any ownership on any of the brands.

Question 38/41

LEAVE A REPLY

Download PDF File