IAPP CIPP/US Practice Exam

Category - Professional

Under the New Jersey Personal Information and Privacy Protection Act (2017), which of the following is not a lawful means to scan a customers’ ID and use information obtained from the state-issued ID card?
  1. Verify the age of someone looking to purchase age-restricted goods and services or to prevent fraudulent returns/exchanges
  2. Verify the identity of a person or validity of an ID card when a customer does not pay in cash, initiates a return, or requests a refund
  3. Verifying a potential customer’s identity and age in the absence of an effort by the potential customer to obtain or seek age-restricted goods or services
  4. Convey information to a debt collector or consumer reporting agency in a way permitted by FCRA, GLBA, and FDCPA
Explanation
Answer: C - In some cases, New Jersey’s Personal Information and Privacy Protection Act prevents a retailer’s scanning, collecting information from, and retaining state-issued IDs. This also entails collecting, using, retaining, and storing information obtained from state-issued ID cards.
 
Under this state law, a retailer cannot request, use or store information from a potential or active customer’s state-issued ID when the individual does not intend to obtain an age-restricted product or service.
Was this helpful? Upvote!
Login to contribute your own answer or details

Top questions

Related questions

Most popular on PracticeQuiz