nerdexam
Snowflake

ARA-C01 · Question #144

A Snowflake Architect is designing an application and tenancy strategy for an organization where strong legal isolation rules as well as multi-tenancy are requirements. Which approach will meet these

The correct answer is A. Create accounts for each tenant in the Snowflake organization.. Strong legal isolation requirements-such as regulatory compliance, data sovereignty, or contractual separation obligations-demand complete physical and logical separation between tenants, which only separate Snowflake accounts provide. Separate accounts have fully isolated comput

Security and Compliance

Question

A Snowflake Architect is designing an application and tenancy strategy for an organization where strong legal isolation rules as well as multi-tenancy are requirements. Which approach will meet these requirements if Role-Based Access Policies (RBAC) is a viable option for isolating tenants?

Options

  • ACreate accounts for each tenant in the Snowflake organization.
  • BCreate an object for each tenant strategy if row level security is viable for isolating tenants.
  • CCreate an object for each tenant strategy if row level security is not viable for isolating tenants.
  • DCreate a multi-tenant table strategy if row level security is not viable for isolating tenants.

How the community answered

(30 responses)
  • A
    73% (22)
  • B
    7% (2)
  • C
    3% (1)
  • D
    17% (5)

Explanation

Strong legal isolation requirements-such as regulatory compliance, data sovereignty, or contractual separation obligations-demand complete physical and logical separation between tenants, which only separate Snowflake accounts provide. Separate accounts have fully isolated compute, storage, metadata, and security boundaries. Even when RBAC can control access effectively within a shared account, it provides only logical isolation; legal obligations typically require account-level separation. Options B and C (object-per-tenant strategies) and Option D (multi-tenant tables) all share underlying account infrastructure, which does not satisfy strong legal isolation rules regardless of whether RBAC or row-level security is used.

Topics

#Multi-tenancy#Account Isolation#Legal Isolation#Security Design

Community Discussion

No community discussion yet for this question.

Full ARA-C01 Practice