CDPSE · Question #165
Which of the following outputs of a privacy audit is MOST likely to trigger remedial action?
The correct answer is A. Deficiencies in how personal data is shared with third parties. Deficiencies in how personal data is shared with third parties represent concrete compliance failures - actual gaps where personal data may be improperly disclosed, inadequately protected by contracts, or shared without legal basis. These findings directly expose the organization
Question
Which of the following outputs of a privacy audit is MOST likely to trigger remedial action?
Options
- ADeficiencies in how personal data is shared with third parties
- BRecommendations to optimize current privacy policy
- CIdentification of uses of sensitive personal data
- DAreas of focus for privacy training
How the community answered
(47 responses)- A83% (39)
- B2% (1)
- C11% (5)
- D4% (2)
Explanation
Deficiencies in how personal data is shared with third parties represent concrete compliance failures - actual gaps where personal data may be improperly disclosed, inadequately protected by contracts, or shared without legal basis. These findings directly expose the organization to regulatory violations, data breaches, and legal liability, making immediate remediation necessary. Option B (recommendations to optimize privacy policy) is advisory and improvement-focused, not a finding of failure. Option C (identification of uses of sensitive personal data) is informational; identifying uses is not itself a problem unless those uses are improper. Option D (areas of focus for training) indicates a gap in awareness, which warrants action but is lower urgency than an active compliance deficiency. Deficiencies in third-party data sharing are the most actionable and risk-bearing audit finding.
Topics
Community Discussion
No community discussion yet for this question.