PracticeQuiz content is free on an ad-supported model.

Unfortunately, we can't support ad blocker usage because of the impact on our servers. If you'd like to continue, please disable your ad blocker and reload page.

Reload page

IAPP CIPP/US Practice Exam

Category - Professional

Start a Study Session Sign up for Question of the Day

Kronos was named a defendant in a class-action lawsuit due to the organization’s failure to obtain employees’ permission before scanning their fingerprints and sharing information with these employees about how the fingerprint scans were to be used. Which law did Kronos violate?

New York “Shield Act”
CCPA
New York Digital Fairness Act
BIPA

Explanation

Answer: D - In this instance, Kronos violated Illinois Biometric Information Protection Act (BIPA). Under this state law, no entity may collect, capture, procure, otherwise obtain or store biometric information without the data subject’s consent.

Organizations must provide written notice about the collection, storage, use, transfer and other inflation about the data collection tool/use purpose and process. Under BIPA, consumers (and employees) must provide written consent for the collection, use, storage and/or sharing of the biometric information.

Was this helpful? Upvote!

Start a Study Session Sign up for Question of the Day

IAPP CIPP/US Practice Exam

Top questions

Related questions

Most popular on PracticeQuiz

Ad-Blocker not supported

IAPP CIPP/US Practice Exam

Top questions

Related questions

Most popular on PracticeQuiz