CIPP-E Dumps Questions With Valid Answers

In which of the following situations would an individual most likely to be able to withdraw her consent for processing?

Please use the following to answer the next question:
You have just been hired by a toy manufacturer based in Hong Kong. The company sells a
broad range of dolls, action figures and plush toys that can be found internationally in a
wide variety of retail stores. Although the manufacturer has no offices outside Hong Kong
and in fact does not employ any staff outside Hong Kong, it has entered into a number of
local distribution contracts. The toys produced by the company can be found in all popular
toy stores throughout Europe, the United States and Asia. A large portion of the company’s
revenue is due to international sales.
The company now wishes to launch a new range of connected toys, ones that can talk and
interact with children. The CEO of the company is touting these toys as the next big thing,
due to the increased possibilities offered: The figures can answer children’s Questions: on
various subjects, such as mathematical calculations or the weather. Each figure is
equipped with a microphone and speaker and can connect to any smartphone or tablet via Bluetooth. Any mobile device within a 10-meter radius can connect to the toys via
Bluetooth as well. The figures can also be associated with other figures (from the same
manufacturer) and interact with each other for an enhanced play experience.
When a child asks the toy a question, the request is sent to the cloud for analysis, and the
answer is generated on cloud servers and sent back to the figure. The answer is given
through the figure’s integrated
speakers, making it appear as though that the toy is actually responding to the child’s
question. The packaging of the toy does not provide technical details on how this works,
nor does it mention that this feature requires an internet connection. The necessary data
processing for this has been outsourced to a data center located in South Africa. However,
your company has not yet revised its consumer-facing privacy policy to indicate this.
In parallel, the company is planning to introduce a new range of game systems through
which consumers can play the characters they acquire in the course of playing the game.
The system will come bundled with a portal that includes a Near-Field Communications
(NFC) reader. This device will read an RFID tag in the action figure, making the figure
come to life onscreen. Each character has its own stock features and abilities, but it is also
possible to earn additional ones by accomplishing game goals. The only information stored
in the tag relates to the figures’ abilities. It is easy to switch characters during the game,
and it is possible to bring the figure to locations outside of the home and have the
character’s abilities remain intact.
Why is this company obligated to comply with the GDPR?

Under what circumstances might the “soft opt-in” rule apply in relation to direct marketing?

As a result of the European Court of Justice’s ruling in the case of Google v. Spain, search
engines outside the EEA are also likely to be subject to the Regulation’s right to be forgotten. This holds true if the activities of an EU subsidiary and its U.S. parent are what?

Under which of the following conditions does the General Data Protection Regulation NOT
apply to the processing of personal data?