During the design of a role-based user access model for a new application, which of the following principles is MOST important to ensure data privacy is protected?
A. Segregation of duties
B. Unique user credentials
C. Two-person rule
D. Need-to-know basis
Which of the following zones within a data lake requires sensitive data to be encrypted or tokenized?
A. Trusted zone
B. Clean zone
C. Raw zone
D. Temporal zone
Which of the following poses the GREATEST privacy risk for client-side application processing?
A. Failure of a firewall protecting the company network
B. An employee loading personal information on a company laptop
C. A remote employee placing communication software on a company server
D. A distributed denial of service attack (DDoS) on the company network
Which key stakeholder within an organization should be responsible for approving the outcomes of a privacy impact assessment (PIA)?
A. Data custodian
B. Privacy data analyst
C. Data processor
D. Data owner
An organization's data destruction guidelines should require hard drives containing personal data to go through which of the following processes prior to being crushed?
A. Low-level formatting
B. Remote partitioning
C. Degaussing
D. Hammer strike
Which of the following helps to ensure the identities of individuals in two-way communication are verified?
A. Virtual private network (VPN)
B. Transport Layer Security (TLS)
C. Mutual certificate authentication
D. Secure Shell (SSH)
An organization wishes to deploy strong encryption to its most critical and sensitive databases. Which of the following is the BEST way to safeguard the encryption keys?
A. Ensure the keys are stored in a remote server.
B. Ensure key management responsibility is assigned to the privacy officer.
C. Ensure the keys are stored in a cryptographic vault.
D. Ensure all access to the keys is under dual control.
An organization decides to outsource its customer personal data analytics to a third party to understand spending habits. Which of the following is the MOST important contractual consideration?
A. Platform architecture used to process the data
B. Terms for continuous monitoring of the vendor
C. Clearly defined data responsibilities of all parties
D. The vendor's vulnerability management program
What is the BEST method for protecting data transmissions to devices in the field?
A. Multi-factor authentication
B. Transport Layer Security (TLS)
C. Application level authentication
D. Hypertext Transfer Protocol Secure (HTTPS)
Which of the following is the GREATEST privacy concern for an organization implementing endpoint detection response (EDR) tools on employee laptops?
A. Lack of an acknowledged user acceptance policy
B. Unclear monitoring scope
C. Poor controls on privileged access to EDR tools
D. Lack of up-to-date EDR capability on employee laptops