nerdexam
Isaca

CDPSE · Question #273

Which of the following roles is responsible for establishing procedures that address the use of personal data for continuous auditing?

The correct answer is B. Data controller. The data controller is the entity that determines the purposes and means of processing personal data and bears accountability for that processing under privacy law (e.g., GDPR Article 24). Establishing procedures-including those governing internal auditing activities involving pe

Privacy Governance

Question

Which of the following roles is responsible for establishing procedures that address the use of personal data for continuous auditing?

Options

  • AData processor
  • BData controller
  • CData modeler
  • DData architect

How the community answered

(48 responses)
  • A
    2% (1)
  • B
    92% (44)
  • C
    4% (2)
  • D
    2% (1)

Explanation

The data controller is the entity that determines the purposes and means of processing personal data and bears accountability for that processing under privacy law (e.g., GDPR Article 24). Establishing procedures-including those governing internal auditing activities involving personal data-falls within the controller's governance responsibilities. Data processors act on instructions from the controller. Data modelers and data architects are technical roles focused on data structure and design, not on setting governance procedures for lawful processing.

Topics

#Data Controller Responsibilities#Privacy Governance#Continuous Auditing#Personal Data Procedures

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice