TL;DR. Compliance training quiz questions across HR / harassment prevention, cybersecurity, anti-bribery / FCPA, and data privacy (GDPR/CCPA). Use for annual training certification.
HR / Harassment prevention (10)
Harassment: — **Unwelcome conduct based on a protected characteristic, severe or pervasive enough to create a hostile work environment**.Two types of sexual harassment: — **Quid pro quo and hostile work environment**.If you witness harassment: — **Report through your company's channel**.Retaliation against a reporter is: — **Itself a violation, regardless of underlying claim outcome**.Possible harassing conduct includes: — **Slurs, jokes, physical contact, offensive displays, intimidation**.Protected classes under US federal law (partial): — **Race, colour, religion, national origin, sex, age (40+), disability, genetic info**.Investigation confidentiality is: — **Maintained to the extent possible; not guaranteed**.Managers have a heightened obligation to: — **Report what they witness or learn of**.Bystander intervention: — **Action to stop harassment by speaking up, supporting, or reporting**.EEOC filing statute of limitations: — **180 days (300 in some states)**.Cybersecurity (10)
Phishing: — **Fraudulent attempt to obtain sensitive info by impersonating a trusted entity**.First sign of phishing: — **Unexpected credential request, urgency, sender address mismatch**.Strong password: — **At least 12 characters, mixed types, unique per service**.2FA: — **Two factors: knowledge + possession or biometric**.Suspect phishing email: — **Don't click; report via company tool**.Ransomware: — **Malware that encrypts files and demands payment**.Public Wi-Fi: — **Use VPN for any work-related activity**.Tailgating: — **Following authorised person through a secure door**.Least privilege: — **Grant only the access needed**.First action after suspected breach: — **Notify IT/security immediately**.Anti-bribery / FCPA (10)
FCPA prohibits: — **Bribery of foreign government officials by US-connected entities**.Facilitating payment: — **Small payment to expedite routine action; narrowly permitted, must be documented**.Gifts to officials: — **Generally prohibited; nominal, transparent, documented if permitted**.UK Bribery Act vs FCPA: — **Covers private bribery, no facilitating payment exception**.Third-party intermediaries: — **Major FCPA risk; due diligence required**.Records of payments to officials must: — **Accurately reflect the nature; no misclassification**.FCPA penalty includes: — **Criminal fines, prison for individuals, civil penalties**.Suspected bribery should be: — **Reported through compliance channel**.Hospitality to officials: — **Reasonable, customary, related to legitimate business, documented**.Books and records: — **Must accurately reflect all transactions**.Data privacy (10)
GDPR applies to: — **Personal data of individuals in EU/EEA, regardless of org location**.Max GDPR fine: — **€20M or 4% of global annual revenue (whichever higher)**.Data subject: — **An identifiable natural person whose data is being processed**.Right to be forgotten: — **GDPR Article 17 — right to erasure under certain conditions**.CCPA rights for California residents: — **Know, request deletion, opt out of sale, non-discrimination**.GDPR breach notification: — **Within 72 hours of awareness**.Data minimisation: — **Collect only necessary personal data**.HIPAA covers: — **Protected health information in the US**.GDPR lawful bases: — **Consent, contract, legal obligation, vital interests, public task, legitimate interests**.DPO required for: — **Public authorities and orgs with large-scale sensitive data processing**.[Safety Training Quiz Questions](/blog/safety-training-quiz-questions)[Customer Service Quiz Questions](/blog/customer-service-quiz-questions)[Employee Onboarding Quiz Guide](/blog/employee-onboarding-quiz-guide)Build a compliance quiz →
Ready to create your first quiz?
Use AI to generate quizzes from your own study materials in seconds.
Try SimpleQuizMaker Free