GDPR Quiz Questions and Answers

This EU GDPR Mini Quiz summarises some of the key elements of the European Union’s EU General Data Protection Regulation ( EU GDPR) and is designed to enhance your awareness of the compliance.
  • Question 1
  • Question 2
  • Question 3
  • Question 4
  • Question 5
  • Question 6
  • Question 7
  • Question 8
  • Question 9
  • Question 10
Question 1 ID: 368

What role will become mandatory for certain organisations under the GDPR.

A) Chief Information Officer

B) Data Protection Officer

C) DevSecOps Officer

D) Chief Executive Officer


Question 2 ID: 371

If I am an EU citizen, which of the following countries/group of countries need to conform to the GDPR regulation if I make a purchase from them?

A) All Countries

B) EU Member States Only

C) European Countries, Whether In Or Outside Of EU

D) All Countries Outside Of Europe


Question 3 ID: 372

An individual about whom personal data is recorded is a...?

A) Person Who Lives Alone

B) Living Person Who Can Be Identified

C) A Person Dead Or Alive Who Can Be Identified


Question 4 ID: 369

What is the deadline for compliance to the GDPR regulation?

A) 25th May 2018

B) 1st June 2018

C) 1st May 2018

D) 28th May 2018


Question 5 ID: 375

What month and year was the EU General Data Protection Regulation (GDPR) published?

A) November 2015

B) April 2014

C) January 2016

D) May 2016


Question 6 ID: 367

In the event of failing to comply with the GDPR regulation, what is the maximum fine that can be enforced?

A) Unlimited

B) 2% of annual turnover & 40,000,000 euros

C) 4% of annual turnover & 20,000,000 euros

D) 4% of annual turnover & 200,000 euros


Question 7 ID: 373

What of the statements below are benefits to your organisation from becoming EU GDPR conformant?

1. Avoid Heavy Fines – Avoid the loss of reputation resulting from data breaches.

2. Legal Compliance – Your company is compliant with all the requirements laid down by the law allows you to avoid unnecessary fines and legal headaches.

3. Better Business Management – The Data Protection Act requires better management and storage of information, this can generally lead to better business practices.

4. Customer Security – It will instil faith in the minds of your customers.

A) Only statement 1 is correct.

B) Only statement 4 is correct.

C) All statements are correct.


Question 8 ID: 366

In the event of a data breach, under what timescales are you obliged to report this to the Data Protection Regulator?

A) 24

B) 48

C) 72

D) 120


Question 9 ID: 370

What acronym best describes how data is to be protected under GDPR?





Question 10 ID: 374

Which statement is true and is one of the main difference between the EU GDPR and DPA 1998?

A) DPA – There is no requirement for an organisation to remove all data they hold on an individual.

GDPR – It is the same as the existing DPA law.

B) DPA – Enforced by the Information Commissioner’s Office (ICO).

GDPR – Compliance will be monitored by a Supervisory Authority in the UK with each European country having its own SA.

C) DPA – Protection Impact Assessments (PIA) are not a legal requirement under DPA but have always being ‘championed’ by the ICO.

GDPR – PIAs are not mandatory for EU General Data Protection Regulation compliance.