Certified Information Privacy Professional – Asia (CIPP/A) — Question 8

Section 43A of India's IT Rules 2011 requires which of the following for a privacy policy?

Answer options

• A. It should be available and produced on request.
• B. It should be published on the website of the body corporate.
• C. It should be emailed or faxed to data providers by the body corporate.
• D. It should be shown to the data provider at the time of data collection.

Correct answer: A

Explanation

The correct answer is A because Section 43A mandates that the privacy policy must be available to individuals upon request. Options B, C, and D do not align with the specific requirement of being provided on request, making them incorrect.