PDPA Interview Questions and Answers
Ques 1. What is the purpose of PDPA?
The PDPA aims to safeguard the privacy of individuals by regulating the collection, use, and disclosure of their personal data.
Example:
For example, organizations must obtain explicit consent before collecting and processing personal information.
Ques 2. Define 'Personal Data' according to PDPA.
Personal data refers to any information about an identified or identifiable individual, including but not limited to, name, address, contact details, and identification numbers.
Example:
An email address or a phone number of a person constitutes personal data.
Ques 3. Explain the data protection obligations of data controllers under PDPA.
Data controllers are responsible for ensuring that personal data is processed fairly, lawfully, and securely. They must also obtain consent and inform individuals about the purpose of data processing.
Example:
Before collecting customer data for marketing, a company must clearly state the intended use and obtain consent.
Ques 4. What are the rights of individuals under PDPA?
Individuals have the right to access their personal data, request corrections, withdraw consent, and be informed about the purpose of data processing.
Example:
A person can request a copy of their data held by an organization and request corrections if any information is inaccurate.
Ques 5. How does PDPA address cross-border data transfers?
PDPA regulates cross-border data transfers by requiring data controllers to ensure that the receiving country provides an adequate level of data protection or by obtaining the individual's consent.
Example:
Before transferring customer data to an overseas branch, a company must assess and ensure that the destination country has sufficient data protection laws.
Most helpful rated by users: