Legal regulations (e.g., GDPR, HIPAA) MCQs January 8, 2026November 19, 2024 by u930973931_answers 10 min Score: 0 Attempted: 0/10 Subscribe 1. What does GDPR stand for? (A) General Data Protection Regulation (B) General Data Privacy Regulation (C) Global Data Protection Regulation (D) Government Data Protection Regulation 2. Which of the following rights is granted by the GDPR to individuals regarding their personal data? (A) The right to access, correct, and delete their data (B) The right to use their data for free (C) The right to sell their data to third parties (D) The right to store their data indefinitely 3. What is the primary purpose of HIPAA (Health Insurance Portability and Accountability Act) in the context of data security? (A) To regulate international data transfers (B) To ensure healthcare organizations protect patient privacy and secure health data (C) To provide encryption guidelines for banks (D) To monitor ethical advertising practices 4. Under GDPR, what is required from organizations before processing personal data? (A) Anonymizing the data (B) Encrypting the data (C) Obtaining explicit consent from the data subject (D) Storing data in a centralized database 5. What does GDPR’s concept of “data portability” allow individuals to do? (A) Delete their data from all systems (B) Automatically encrypt their data (C) Share data with any third party (D) Transfer their personal data between service providers in a structured format 6. Which of the following is an example of a breach of GDPR? (A) Anonymizing personal data for research (B) Individuals accessing their own data (C) Encrypting stored personal data (D) Collecting personal data without individual consent 7. What is HIPAA’s main requirement for healthcare providers regarding data? (A) Store patient data only in physical form (B) Use encrypted communication only (C) Keep personal health information confidential and secure (D) Allow free sharing of health data 8. Which of the following is NOT a responsibility of an organization under GDPR? (A) Notifying individuals of data breaches (B) Allowing individuals access to their personal data (C) Processing data lawfully and transparently (D) Keeping data in raw form indefinitely 9. Which of the following is an example of a data subject right under GDPR? (A) Full access to processing servers (B) Unlimited access to all organizational systems (C) The right to share data with advertisers (D) The right to request data deletion 10. What does the “right to be forgotten” under GDPR mean? (A) Individuals can send data directly to government authorities (B) Individuals can share their data with any third party (C) Individuals can store their data indefinitely (D) Individuals can request erasure of their personal data when it is no longer necessary