CIPP E EXAM PREP 2026 EXAM STUDY
GUIDE COMPREHENSIVE QUESTIONS AND
CORRECT ANSWERS VERIFIED GRADED A+
⩥ How many member states in the European Union? Answer: 28
member states
⩥ What is the European Economic Area composed of? Answer: EU
member states + Iceland + Liechtenstien + Norway
⩥ What are the key characteristics of the Data Protection Directive?
Answer: - Places obligations on member states
- Is transposed into 28 national laws in the EU
- Differs across member states
- Formed the Article 29 Working Party
⩥ In what ways is the GDPR different from the Data Protection
Directive? Answer: The GDPR:
- is directly applicable and enforceable as law
,- provides one set of data protection rules for all
- allows member states a degree of tailoring
- forms the European Data Protection Board (EDPB)
⩥ What are the special categories of personal data? Answer: - racial
origin
- ethic origin
- political opinions
- religious beliefs
- philosophical beliefs
- trade-union membership
- genetic data
,- biometric data
- health data
- sex life
- sexual orientation
(- criminal convictions and offences can only be processed by authorities
with safeguards)
⩥ What is a supervisory authority? Answer: A Data Protection Authority
(DPA) - an entity appointed to enforce privacy or data protection laws
and regulation in a particular jurisdiction.
⩥ What is the definition of data processing? Answer: Any operation or
set of operations which is performed on personal data or on sets of
personal data, whether or not by automated means.
⩥ What are the GDPR data processing principles? Answer: -
Lawfulness, fairness, and transparency of processing
- Purpose limitation
, - Data minimization and proportionality
- Data quality and accuracy
- Storage limitation
- Integrity and confidentiality
- Accountability
⩥ What are the two types of scope needed for the GDPR to apply?
Answer: - territorial scope
- material scope
⩥ When is territorial scope satisfied? Answer: GDPR applies if a
controller or processor:
(1) is established in the EU,
(2) offers goods or services to EU residents,
GUIDE COMPREHENSIVE QUESTIONS AND
CORRECT ANSWERS VERIFIED GRADED A+
⩥ How many member states in the European Union? Answer: 28
member states
⩥ What is the European Economic Area composed of? Answer: EU
member states + Iceland + Liechtenstien + Norway
⩥ What are the key characteristics of the Data Protection Directive?
Answer: - Places obligations on member states
- Is transposed into 28 national laws in the EU
- Differs across member states
- Formed the Article 29 Working Party
⩥ In what ways is the GDPR different from the Data Protection
Directive? Answer: The GDPR:
- is directly applicable and enforceable as law
,- provides one set of data protection rules for all
- allows member states a degree of tailoring
- forms the European Data Protection Board (EDPB)
⩥ What are the special categories of personal data? Answer: - racial
origin
- ethic origin
- political opinions
- religious beliefs
- philosophical beliefs
- trade-union membership
- genetic data
,- biometric data
- health data
- sex life
- sexual orientation
(- criminal convictions and offences can only be processed by authorities
with safeguards)
⩥ What is a supervisory authority? Answer: A Data Protection Authority
(DPA) - an entity appointed to enforce privacy or data protection laws
and regulation in a particular jurisdiction.
⩥ What is the definition of data processing? Answer: Any operation or
set of operations which is performed on personal data or on sets of
personal data, whether or not by automated means.
⩥ What are the GDPR data processing principles? Answer: -
Lawfulness, fairness, and transparency of processing
- Purpose limitation
, - Data minimization and proportionality
- Data quality and accuracy
- Storage limitation
- Integrity and confidentiality
- Accountability
⩥ What are the two types of scope needed for the GDPR to apply?
Answer: - territorial scope
- material scope
⩥ When is territorial scope satisfied? Answer: GDPR applies if a
controller or processor:
(1) is established in the EU,
(2) offers goods or services to EU residents,
