CERTIFIED-IN-CYBERSECURITY · Question #157
CERTIFIED-IN-CYBERSECURITY Question #157: Real Exam Question with Answer & Explanation
The correct answer is D: Privacy Policy. A Privacy Policy outlines the data security mechanisms which ensure that customer data is protected; namely, how Personal Identifiable Information (PII) is collected, stored and processed (see ISC2 Study Guide, chapter 5, module 3). The General Data Protection Regulation (GDPR) i
Question
When a company collects PII, which policy is required?
Options
- ARemote Access Policy
- BGDPR
- CAcceptable Use Policy
- DPrivacy Policy
Explanation
A Privacy Policy outlines the data security mechanisms which ensure that customer data is protected; namely, how Personal Identifiable Information (PII) is collected, stored and processed (see ISC2 Study Guide, chapter 5, module 3). The General Data Protection Regulation (GDPR) is a data protection and privacy regulation for the European Union and the European Economic Area (not a policy). An Acceptable Use Policy (AUP) defines the guidelines and limitations that users must agree on while accessing the organization's network, computer systems or other related resources. Finally, the Remote Access Policy (RAP) defines acceptable methods of remotely connecting to an organization's internal network.
Topics
Community Discussion
No community discussion yet for this question.