GDPR Principle A Quiz

Lawfulness

Fairness

Accuracy

Transparency

Legitimate reasons provided by the organization

Any valid legal basis, such as consent or contract

The individual’s social media preferences

Any reason the organization decides internally

Easily accessible to everyone

Predictable and understandable to the individual

Automatically deleted after processing

Only stored in the EU

Keeping individuals fully informed about how their data will be used

Allowing individuals to access all data collected about them at any time

Making data collection methods visible to the general public

Ensuring data is processed only in secure environments

Not disclosing data collection methods to users

Providing clear and accessible privacy policies

Regularly updating users about data usage

Ensuring user consent before data collection

Providing a clear and accessible privacy notice

Using complex legal language that’s difficult to understand

Clearly outlining the purpose of data collection

Allowing individuals to update their personal information

Consent from the individual

Contractual necessity

Preventing competition

Legitimate interest of the controller

Legitimate interest

Consent

Contractual necessity

Vital interest

An overview of potential risks involved in data processing

A detailed report of all employees who access the data

Clear information on data processing purposes and individuals’ rights

A copy of every email exchanged with the individual