Which concept is NOT an element of Cross Border Privacy Rules (CBPR)?
Which concept is NOT an element of Cross Border Privacy Rules (CBPR)?
The Cross Border Privacy Rules (CBPR) system includes self-assessment against a CBPR questionnaire, enforcement by Accountability Agents, and dispute resolution via the Accountability Agent's compliance program. Consultation with a Privacy Enforcement (PE) Authority is not an element of the CBPR system.
Should be C
Answer - C Elements of the CBPR System The CBPR System consists of four elements: (1) self-assessment; (2) compliance review; (3) recognition/acceptance; and (4) dispute resolution and enforcement. Self-Assessment Questionnaire for Organizations The CBPR System relies on an organization’s self-assessment of their data privacy policies and practices against the requirements of 2015 APEC Privacy Framework using an APEC- recognized CBPR questionnaire (see para 21). This questionnaire will be provided by the appropriate APEC-recognized Accountability Agent, in accordance with established selection requirements
C. Consultation with Privacy Enforcement (PE) Authority.
C. Consultation with Privacy Enforcement (PE) Authority.