nerdexam
Isaca

CDPSE · Question #291

Which of the following BEST prevents users from sending out customers' personal data without encryption?

The correct answer is B. De-identification of data. De-identification removes or obscures personal identifiers from data, meaning that even if a user sends the data externally without encryption, it no longer constitutes personal data and carries no privacy risk. This addresses the problem at the data layer, eliminating the risk r

Privacy Architecture

Question

Which of the following BEST prevents users from sending out customers’ personal data without encryption?

Options

  • AData loss prevention (DLP) tools
  • BDe-identification of data
  • CAutomatic email blocking
  • DUser behavior monitoring

How the community answered

(48 responses)
  • A
    13% (6)
  • B
    79% (38)
  • C
    2% (1)
  • D
    6% (3)

Explanation

De-identification removes or obscures personal identifiers from data, meaning that even if a user sends the data externally without encryption, it no longer constitutes personal data and carries no privacy risk. This addresses the problem at the data layer, eliminating the risk regardless of transmission behavior. DLP tools (A) can detect and block some transmissions but are bypassable, rely on policy configuration, and do not eliminate the underlying sensitive data. Automatic email blocking (C) is a blunt, operationally disruptive control. User behavior monitoring (D) is a detective control that identifies incidents after the fact but does not prevent them.

Topics

#De-identification#Privacy-enhancing Technologies#Data Minimization#Privacy Controls

Community Discussion

No community discussion yet for this question.

Full CDPSE Practice