CDPSE · Question #291
Which of the following BEST prevents users from sending out customers' personal data without encryption?
The correct answer is B. De-identification of data. De-identification removes or obscures personal identifiers from data, meaning that even if a user sends the data externally without encryption, it no longer constitutes personal data and carries no privacy risk. This addresses the problem at the data layer, eliminating the risk r
Question
Which of the following BEST prevents users from sending out customers’ personal data without encryption?
Options
- AData loss prevention (DLP) tools
- BDe-identification of data
- CAutomatic email blocking
- DUser behavior monitoring
How the community answered
(48 responses)- A13% (6)
- B79% (38)
- C2% (1)
- D6% (3)
Explanation
De-identification removes or obscures personal identifiers from data, meaning that even if a user sends the data externally without encryption, it no longer constitutes personal data and carries no privacy risk. This addresses the problem at the data layer, eliminating the risk regardless of transmission behavior. DLP tools (A) can detect and block some transmissions but are bypassable, rely on policy configuration, and do not eliminate the underlying sensitive data. Automatic email blocking (C) is a blunt, operationally disruptive control. User behavior monitoring (D) is a detective control that identifies incidents after the fact but does not prevent them.
Topics
Community Discussion
No community discussion yet for this question.