E-Commerce and Data Privacy Act Quiz
37 Questions
9 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which of the following is NOT a responsibility of the personal information processor?

  • Conducting regular audits independently (correct)
  • Assisting the personal information controller in compliance
  • Informing the personal information controller of infringements
  • Deleting personal data after service provision
  • What is required before a processor can engage another processor?

  • Prior approval from the Commission
  • Notification to data subjects about the engagement
  • Written contract with the new processor
  • Prior instruction from the personal information controller (correct)
  • What must be done to personal data at the end of processing services, according to the obligations?

  • Return or delete all personal data (correct)
  • Keep a copy for future processing
  • Archive data for a certain period
  • Share data with other processors
  • What does a personal information processor need to provide to demonstrate compliance?

    <p>All information necessary for the personal information controller</p> Signup and view all the answers

    What action should a personal information processor take if they believe an instruction violates the Act?

    <p>Immediately inform the personal information controller</p> Signup and view all the answers

    What is the primary purpose of the Electronic Commerce Act?

    <p>To establish legal recognition of electronic data messages.</p> Signup and view all the answers

    Which of the following defines 'Data Outsourcing' under the Data Privacy Act?

    <p>Transferring personal data for processing in compliance with documented instructions.</p> Signup and view all the answers

    What is a responsibility of a Personal Information Processor?

    <p>To impose confidentiality on authorized personnel.</p> Signup and view all the answers

    Which of the following is NOT a right of a data subject under the Data Privacy Act?

    <p>Right to monetary compensation for data processing.</p> Signup and view all the answers

    What is the primary scope of application of the Data Privacy Act?

    <p>Covers processing of personal data by both private and public sectors.</p> Signup and view all the answers

    What must companies ensure when processing personal data according to the Data Privacy Act?

    <p>Implement security measures and comply with the Act.</p> Signup and view all the answers

    Which of the following correctly describes 'Data Sharing'?

    <p>Transfer of data between parties that have their own reasons for processing.</p> Signup and view all the answers

    What is a key principle included in the Data Privacy Act?

    <p>Data processing should be done on a need-to-know basis.</p> Signup and view all the answers

    What is required for the sharing of an electronic key with another party?

    <p>Consensual agreement from the individual or entity in possession</p> Signup and view all the answers

    What characterizes the obligation of confidentiality regarding electronic keys?

    <p>It mandates that access obtained must not be conveyed to others</p> Signup and view all the answers

    Which is true about the legal recognition of electronic documents?

    <p>An electronic signature is equated to a handwritten signature</p> Signup and view all the answers

    According to the Best Evidence Rule, how can an electronic document be considered equivalent to an original?

    <p>If it is a printout that accurately reflects the data</p> Signup and view all the answers

    What is the role of an originator in the context of electronic documents?

    <p>A person by whom the electronic document is created or sent.</p> Signup and view all the answers

    What must be ensured for electronic documents to be admissible in legal proceedings?

    <p>They must comply with the Rules of Court and be authenticated</p> Signup and view all the answers

    Which of the following best defines an electronic data message?

    <p>Information generated and transmitted by electronic means.</p> Signup and view all the answers

    What does the Authentication of Evidence Rule require for an electronic document?

    <p>It must be digitally signed or authenticated through security measures</p> Signup and view all the answers

    What is a digital signature?

    <p>An electronic signature derived from a public cryptosystem.</p> Signup and view all the answers

    Which of the following statements about the obligation of confidentiality is false?

    <p>Sharing is allowed with approval from a third party</p> Signup and view all the answers

    Which of the following accurately reflects the role of an electronic key?

    <p>A secret code that defends sensitive information</p> Signup and view all the answers

    What characterizes ephemeral electronic communication?

    <p>Communications that are not retained after transmission.</p> Signup and view all the answers

    What is the primary function of a service provider in the context of electronic documents?

    <p>To provide technical means for storing and accessing documents.</p> Signup and view all the answers

    Which best describes an electronic signature?

    <p>A distinctive mark or characteristic representing a person's identity in electronic form.</p> Signup and view all the answers

    What does the principle of lawful access entail?

    <p>Only authorized individuals have access to electronic files based on their legal rights.</p> Signup and view all the answers

    What is the role of the National Privacy Commission?

    <p>To monitor and ensure compliance with international data protection standards</p> Signup and view all the answers

    What distinguishes an electronic document from other forms of communication?

    <p>It must represent information in a digital format.</p> Signup and view all the answers

    Which of the following is NOT considered a data subject's right?

    <p>To access private data without restrictions</p> Signup and view all the answers

    Which principle of data processing ensures that personal information is only collected for a legitimate purpose?

    <p>Legitimate purpose</p> Signup and view all the answers

    Under which circumstance is the processing of sensitive personal information permitted?

    <p>If data subject has consented to the processing</p> Signup and view all the answers

    What is an example of a factor that overrides the interests of the data controller?

    <p>Fundamental rights and freedoms of the data subject</p> Signup and view all the answers

    Which of the following terms refers to the individual whose personal information is processed?

    <p>Data Subject</p> Signup and view all the answers

    What does the principle of accountability entail in data processing?

    <p>Ensuring penalties for violations of data protection rules</p> Signup and view all the answers

    What must be demonstrated in order to lawfully process personal information?

    <p>Consent from the data subject</p> Signup and view all the answers

    Study Notes

    Electronic Commerce Act (Republic Act No. 8792)

    • Defines essential terms and principles underlying electronic commerce.
    • Provides legal recognition for electronic data messages/documents, granting them the same validity as traditional documents.
    • Covers both commercial and non-commercial uses of electronic transactions.

    Key Terms

    • Originator: Person who creates or sends an electronic document.
    • Addressee: Intended recipient of the electronic message or document.
    • Service Provider: Entity offering online services or technical means related to electronic documentation.

    Electronic Documents and Messages

    • Electronic Document: Represents information or rights created, transmitted, or stored electronically.
    • Electronic Data Message: Information sent, received, or stored through electronic means.
    • Digital Signature: A method to verify identity and authenticity of an electronic document using cryptographic techniques.
    • Equal legal effect for electronic documents and signatures as traditional paperwork.
    • The principle of lawful access restricts unauthorized access to electronic files and keys.
    • Confidentiality obligations prevent sharing of sensitive data obtained during processing.

    Data Privacy Act (Republic Act No. 10173)

    • Establishes definitions, scope, and principles regarding personal data protection.
    • Emphasizes rules for processing personal data and implementing security measures.

    Personal Information Processor Duties

    • Processes data only per instructions from controllers, ensuring confidentiality and security.
    • Required to assist controllers in compliance with legal obligations.
    • Obligated to delete or return data upon service completion.

    Data Outsourcing and Sharing

    • Data Outsourcing: Transfer of personal data to process under controller's instructions without personal processing purposes.
    • Data Sharing: Disclosure of personal data to third parties, where each party has independent reasons for processing.

    Data Subject Rights

    • Right to be informed about data processing, access personal data, and correct inaccuracies.
    • Right to receive notifications on data breaches and accountability for data transfer issues.

    National Privacy Commission

    • Enforces compliance with data protection laws and international standards.
    • Composed of a Privacy Commissioner and Deputy Commissioner for guidance and policy enforcement.

    Principles of Data Processing

    • Confidentiality: All personal data treated as confidential.
    • Security: Information handled with transparency and for legitimate purposes.
    • Accountability: Sets penalties for violations of data protection laws.

    Exceptions for Processing Sensitive Data

    • Processing permissible under conditions like consent, legal obligations, or emergencies.
    • Exceptions must prioritize the fundamental rights of data subjects outlined in the Philippine Constitution.

    Compliance and Registration

    • Compliance with the Data Privacy Act mandates registration and adherence to stipulated requirements for data controllers and processors.

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Description

    Test your knowledge of the E-Commerce Act and the Data Privacy Act with this quiz. It covers essential definitions, principles, and applications relevant to electronic commerce and data privacy law. Understand how these laws apply to transactions and communication in the digital space.

    More Like This

    Use Quizgecko on...
    Browser
    Browser