Questions

At the day end, if you find your colleague has left the document containing customer/employee personal data, what would you do?
An employee in his individual capacity keeps a database of his friend and relatives including their name, address and date of birth on his o
Which of these is a Privacy Principle
A relationship manager (RM) meets the prospective customer for the sale of a product. During the conversation, RM can give the following
Data privacy is protection of following under the possession of the organisation
Identify the purpose of collecting the information
What can be treated as personal information?
Data Privacy is the responsibility of the ______________of the organisation.
As per Data Privacy principles, it is always advisable to:
Is it right to discuss customer related personal information in public areas like cafeteria, lifts, etc.
If you have to send personal data of customer through mail for official requirement, what needs to be ensured:
An individual approaches the branch, praises the branch manager and staff for the manner in which the customers are treated. He shares
A well known film actor opens an account with the bank. The personnel processing the account opening form and account opening cheque
Which of the following actions would ensure that privacy of customer data would be maintained?
A customer has closed his relationship with the bank. In this case
Which of the following would lead to a Privacy Breach?
Bank makes a service call to the customer. But, the customer was not available on the call. It was answered by his wife. Wife is not a joint a
Mr. X was carrying a laptop containing large amount of customer data for some official purpose. On the way, the laptop was stolen. What
Tax authorities demand for the personal details of the employees viz, the employee’s pay. In such a scenario what should the employer do
Can the performance related data of any employee be shared with other employees/outside parties.
Does KYC regulations provide unlimited rights to Banks to seek information about the customer to know more and more about the custom
Once data is received by the bank, staff members as representatives of the bank can decide with whom it can be shared at their discretion
A relative of the customer approaches the branch for the account information of the customer. What is the right method:
An official of the Financial Intelligence Unit has sought for the transaction details of some listed customers, as they suspect some suspicion
A person approaches a branch seeking information pertaining to a certain account with a formal request letter. The branch official should
Think Privacy campaign has been launched to increase employee awareness on
Customers data acquired by the bank should be
Improper handling of data can cause serious consequences to which of the following:
Customer information should not be disclosed to anyone (including other employees or family and friends) who is no authorised to receive
Sharing which of the following customer document will lead to breach of Data Privacy
An employee of the Group Company seeks details of the bank customers, to cross sell their products. What should one do, in such a situati
A person approaches the branch and request for a bank statement of his friend. The branch official should provide the statement only afte
What should one do, if the customer data is left unattended on printers for a long period of time?
When can the disclosure be made without the consent of the customer
A bank records information about some individuals who are shareholders of its corporate account holders. It collects and hold such inform
Which of the following is not a form of Privacy
A bank sends out annual statements through post to its customers detailing transactions on their deposit accounts during the previous yea
After the use of print outs containing customer/employee personal data what should one do
An employer receives several applications for a job vacancy. The employer is successful in recruiting the desired staff for the vacant positio
One can share his/her password with:
Which of the following is a measure of Accuracy
Which of the following is not a Personal Data
In case of corporate, any information that is not available in the public domain but is shared with the ICICI Group will be treated on par wit
Limit the access to your work areas and computers to authorized persons only.
A fellow employee calls up the phone banking or visits the branch mentioning that his colleague has met up with an accident. He shares th
Privacy breach is an unauthorised access to, __________, __________ or ___________ of personal information
An employee having an access to finacle receives a call from his friend enquiring about a transaction in his account. What should be done
You may transfer official information including customer information into personal databases
While accepting customer's application and other service requests, one should make sure that:
Does sharing an existing customer’s name and account balance with a prospective client amount to breach of data privacy.
Which of the following statements are correct
Bank is unable to locate its customer who has stopped making loan repayments. The customer has shifted his residence without notifying
Think Privacy is a rigid customer/employee data protection standards which gives no option of sharing the data to anyone other than the c
Following are the most common causes for Privacy Breach:
Personal information is any identifiable information about ___________.
Mr. X an employee of the bank meets the client and collects the customer details. After his dealing with the client, he would be proceeding
The organization has taken the customer details for the purpose of account opening and the customer has not opted for cross selling. In su
Regulator has asked for a customer information. What would you do:
Your activity involves processing of customer data and you are in an area having restricted access, while leaving for lunch you must
Which of the following is personal data for corporates
Which of the following is breach of Data Privacy?
What out of the following is not a privacy breach
Which of the following is a privacy breach
An employer is investigating allegations of harassment against one of its employees. The employee in question emails the HR department
Mr. Raj, a customer of the bank had defaulted in payment of his credit card dues. He was not available on any of his contacts. The bank ap
A guardian approaches a bank for details of the minor. What should one do
Would sharing of customer personal information, after termination of the relationship amount to breach in privacy.
 Answers
Lock it in your drawer and sensitise him/her the next day
Employee himself
All
1,3
All
1,2
2,3
Employees
2,4
No
Send password protected files
3
None of the above
2,3
3
Both a & b above
Inform the person who attended the call that since she is not the joint account holder details could not be shared with her.
Encryption of laptop
Employer can share the details as he is under the legal obligation to do so
No
Know your customer regulations have its own boundaries in seeking information from the customer viz. customer identity and customer a
Staff members as representatives can act only on the customers/employees consent, bank’s policies and on the prevailing laws and regula
Check the authorization letter, satisfy that it meets the bank’s policy requirement and share the personal information
1,4
1,2
Data Privacy
Shared with only those employees who need it as a part of their job
All of the above
Yes
all
Share the details of only those members who have opted for cross sell.
1,2
Try to identify the owner of the data and if ownership can't be ascertained then destroy the data
1,3,4
No
None of the above
1,3,
Shred the document
Wrong
None of the above
1,2,4
None of the above
1
Yes
Deny the reques
1,2,4
Direct him to the phone banking team as the process of customer identification is a pre-requisite
No
1,2,3
Yes
2,3
Can share the personal details of the customer without obtaining the consent of the customer
No it is incorrect. Think privacy, is a principle based data protection standards which allow sharing of data to third parties as per customer/
all
Both a & b above
Go to office and submit the documents to the appropriate authority before proceeding on leave
1,3
Share the information after seeking approval from compliance
3,4
2,3,4
all
None of the above
1,2
Retain the record of investigation and add a note to the file recording the employee’s insistence that allegations are untrue
Destroy the excessive information
Share the details after verifying the guardianship with banks record
Yes
mer identity and customer address. There is no contradiction with privacy principles but complements by stating that the information sought should be
e prevailing laws and regulations
ird parties as per customer/employee autorisation and to the extent that law permits

s are untrue
he information sought should be relevant and appropriate to the product or service provided.