CISSP Question #882: Real Exam Question with Answer & Explanation

The correct answer is D: Data Quality. The principle of Data Quality, within the OECD Fair Information Practice Principles, directly addresses the need for personally identifiable information (PII) to be accurate, complete, and relevant for its intended use.

Submitted by naveen.iyer· Mar 5, 2026Security and Risk Management

Question

The principle that personally identifiable information (PII) should be kept up-to-date and relevant to the purposes for which they are to be used is attributed to which fair information practice per the United States (US) Organization for Economic Cooperation and Development (OECD)?

Options

APurpose Specification
BSecurity Safeguards
CCollection Limitation
DData Quality

Explanation

The principle of Data Quality, within the OECD Fair Information Practice Principles, directly addresses the need for personally identifiable information (PII) to be accurate, complete, and relevant for its intended use.

Common mistakes.

A. Purpose Specification requires that the purposes for collecting personal data be specified at the time of collection and that data use be limited to those purposes.
B. Security Safeguards mandates that reasonable security measures must be in place to protect personal data from risks such as loss or unauthorized access, modification, or disclosure.
C. Collection Limitation dictates that there should be limits on the collection of personal data, which should be obtained by lawful and fair means, preferably with the data subject's knowledge or consent.

Concept tested. OECD Fair Information Practice Principles (FIPPs)

Reference. https://www.oecd.org/sti/ieconomy/oecdguidelinesontheprotectionofprivacyandtransborderflowsofpersonaldata.htm

Topics

#PII#Data privacy#OECD FIPs#Data quality

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions