nerdexam
ExamsSY0-301Questions#649
CompTIA

SY0-301 · Question #649

SY0-301 Question #649: Real Exam Question with Answer & Explanation

The correct answer is A: PII handling. A PII (Personally Identifiable Information) handling policy (A) defines how sensitive personal data is collected, stored, transmitted, accessed, and disposed of throughout its lifecycle. By specifying classification levels, encryption requirements, access restrictions, and dispos

Question

Which of the following policies is implemented in order to minimize data loss or theft?

Options

  • APII handling
  • BPassword policy
  • CChain of custody
  • DZero day exploits

Explanation

A PII (Personally Identifiable Information) handling policy (A) defines how sensitive personal data is collected, stored, transmitted, accessed, and disposed of throughout its lifecycle. By specifying classification levels, encryption requirements, access restrictions, and disposal procedures, it directly addresses and minimizes the risk of data loss or theft. A password policy (B) governs authentication strength and rotation, which supports access control but does not directly govern data handling. Chain of custody (C) documents the possession and transfer of evidence in forensic or legal contexts - it does not prevent data loss. Zero-day exploits (D) are a category of vulnerability, not a policy; no policy is named after them in this context.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice