Rock the OneTrust Certified Privacy Pro Exam 2025 – Privacy Pros, Prepare to Shine!

Remove ads, get exclusive features. Starting from $7.99

Question: 1 / 400

Per the LGPD, communication to the national authority and the data subject regarding the occurrence of a security incident that may create risk or relevant damage to the data subject shall be done:

Immediately

Within 24 hours

In a reasonable time period as defined by the national authority

Per the LGPD (Lei Geral de Proteção de Dados) in Brazil, the communication to the national authority and the data subject regarding a security incident that may create risk or relevant damage to the data subject should be done in a reasonable time period as defined by the national authority. This is in alignment with the requirements of the LGPD, which does not specify a specific timeframe such as immediately, within 24 hours, within 72 hours, following a formal investigation, or after obtaining legal counsel. The communication timeline is meant to be flexible and determined based on the severity of the incident and the guidelines set by the national authority to ensure that data subjects and the relevant authorities are informed promptly and adequately.

Get further explanation with Examzify DeepDiveBeta

Within 72 hours

Following a formal investigation

After obtaining legal counsel

Next Question

Report this question

Download OneTrust Certified Privacy Professional Practice Exam PDF Study Guide

Rock the OneTrust Certified Privacy Pro Exam 2025 – Privacy Pros, Prepare to Shine!

Get the latest from Examzify