ARA-C01 · Question #17
A healthcare company is deploying a Snowflake account that may include Personal Health Information (PHI). The company must ensure compliance with all relevant privacy standards. Which best practice re
The correct answer is A. Use, at minimum, the Business Critical edition of Snowflake. B. Create Dynamic Data Masking policies and apply them to columns that contain PHI. D. Use the External Tokenization feature to obfuscate sensitive data.. A healthcare company that handles PHI data must ensure compliance with relevant privacy standards, such as HIPAA, HITRUST, and GDPR. Snowflake provides several features and best practices to help customers meet their data protection and compliance requirements. One best practice
Question
A healthcare company is deploying a Snowflake account that may include Personal Health Information (PHI). The company must ensure compliance with all relevant privacy standards. Which best practice recommendations will meet data protection and compliance requirements? (Choose three.)
Options
- AUse, at minimum, the Business Critical edition of Snowflake.
- BCreate Dynamic Data Masking policies and apply them to columns that contain PHI.
- CUse the Internal Tokenization feature to obfuscate sensitive data.
- DUse the External Tokenization feature to obfuscate sensitive data.
- ERewrite SQL queries to eliminate projections of PHI data based on current_role().
- FAvoid sharing data with partner organizations.
How the community answered
(36 responses)- A69% (25)
- C3% (1)
- E8% (3)
- F19% (7)
Explanation
A healthcare company that handles PHI data must ensure compliance with relevant privacy standards, such as HIPAA, HITRUST, and GDPR. Snowflake provides several features and best practices to help customers meet their data protection and compliance requirements. One best practice recommendation is to use, at minimum, the Business Critical edition of Snowflake. This edition provides the highest level of data protection and security, including end-to- end encryption with customer-managed keys, enhanced object-level security, and HIPAA and HITRUST Another best practice recommendation is to create Dynamic Data Masking policies and apply them to columns that contain PHI. Dynamic Data Masking is a feature that allows masking or redacting sensitive data based on the current user's role. This way, only authorized users can view the unmasked data, while others will see masked values, such as NULL, asterisks, or random characters. A third best practice recommendation is to use the External Tokenization feature to obfuscate sensitive data. External Tokenization is a feature that allows replacing sensitive data with tokens that are generated and stored by an external service, such as Protegrity. This way, the original data is never stored or processed by Snowflake, and only authorized users can access the tokenized data through the external service.
Topics
Community Discussion
No community discussion yet for this question.