Certified Information Privacy Professional – Europe (CIPP/E) — Question 77

According to the European Data Protection Board, which of the following concepts or practices does NOT follow from the principles relating to the processing of personal data under EU data protection law?

Answer options

• A. Data ownership allocation.
• B. Access control management.
• C. Frequent pseudonymization key rotation.
• D. Error propagation avoidance along the processing chain.

Correct answer: A

Explanation

The correct answer is A, as data ownership allocation is not a principle derived from EU data protection law, which focuses more on data processing rights and responsibilities. Options B, C, and D pertain to practices that align with the requirements for protecting personal data under the law.