Chapter 10
10 topics in this part of the CIPP/E body of knowledge - free to read. The practice questions unlock with a one-time pass.
- Background - why security is an A-list principleCh 10.1 - Background
- Security principle and the risk-based approach (Article 32)Ch 10.2 - Article 32 security of processing
- Employees, the insider threat, and the controller-processor relationshipCh 10.2.2-10.2.3 - Article 32(4) & Article 28
- Risk reporting and the meaning of 'personal data breach'Ch 10.3-10.3.1 - Breach notification overview & definition
- Article 33 - notifying the supervisory authorityCh 10.3.2 - Article 33
- Article 34 - communicating the breach to data subjectsCh 10.3.3 - Article 34
- Article 33 vs Article 34 - side-by-side comparisonCh 10.3 - Comparison
- Delivering on security - programmes, people, paperworkCh 10.4 - Delivering on security
- Incident responseCh 10.5 - Incident response
- The NIS Directive (and NIS 2)Ch 10.6 - NIS Directive