nerdexam
Isaca

CDPSE · Question #217

What is the BEST method to protect customers' personal data that is forwarded to a central system for analysis?

The correct answer is A. Pseudonymization. Pseudonymization is the best method because it replaces identifying information (like names or IDs) with artificial identifiers, allowing the data to still be analyzed and linked back to individuals when needed - making it both useful and protective under frameworks like GDPR. B

Privacy Architecture

Question

What is the BEST method to protect customers' personal data that is forwarded to a central system for analysis?

Options

  • APseudonymization
  • BDeletion
  • CEncryption
  • DAnonymization

How the community answered

(45 responses)
  • A
    76% (34)
  • B
    13% (6)
  • C
    9% (4)
  • D
    2% (1)

Explanation

Pseudonymization is the best method because it replaces identifying information (like names or IDs) with artificial identifiers, allowing the data to still be analyzed and linked back to individuals when needed - making it both useful and protective under frameworks like GDPR.

  • B (Deletion) is wrong because deleted data cannot be forwarded or analyzed at all - it eliminates utility entirely.
  • C (Encryption) protects data in transit or at rest but must be decrypted to be analyzed, meaning the original personal data is still exposed during processing.
  • D (Anonymization) is irreversible - it permanently removes the ability to re-identify individuals, which prevents legitimate use cases like follow-up analysis or correcting errors.

Memory tip: Think of pseudonymization as a "name tag swap" - the data still works for analysis, but the real identity is locked away separately. Anonymization burns the name tag; encryption just locks the door you still have to open.

Topics

#Pseudonymization#Data protection#PII protection#Data processing

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice