nerdexam
Isaca

CDPSE · Question #29

Which of the following is the BEST way to limit the organization's potential exposure in the event of consumer data loss while maintaining the traceability of the data?

The correct answer is B. De-identify the data.. De-identification removes or obscures direct personal identifiers (name, SSN, etc.) while retaining pseudonymous tokens or keys that allow the organization to trace and link records internally. If de-identified data is lost or stolen, it cannot be readily linked back to real indi

Data Life Cycle

Question

Which of the following is the BEST way to limit the organization's potential exposure in the event of consumer data loss while maintaining the traceability of the data?

Options

  • AEncrypt the data at rest.
  • BDe-identify the data.
  • CUse a unique hashing algorithm.
  • DRequire a digital signature.

How the community answered

(41 responses)
  • A
    7% (3)
  • B
    73% (30)
  • C
    15% (6)
  • D
    5% (2)

Explanation

De-identification removes or obscures direct personal identifiers (name, SSN, etc.) while retaining pseudonymous tokens or keys that allow the organization to trace and link records internally. If de-identified data is lost or stolen, it cannot be readily linked back to real individuals, limiting privacy exposure. Critically, the data retains traceability within the organization through the pseudonymous key. Option A (encryption at rest) still contains full personal data - if the decryption key is compromised, all data is exposed. Option C (unique hashing) can provide traceability but hashed PII may still be reversible with brute force or rainbow tables. Option D (digital signatures) ensures authenticity and non-repudiation but does not protect the data's content from exposure.

Topics

#Data De-identification#Pseudonymization#Data Traceability#Data Minimization

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice