Question 6 of 281
During the design of a role-based user access model for a new application, which of the following principles is MOST important to ensure data privacy is protected?
    Correct Answer: D

    In a role-based user access model, ensuring a need-to-know basis is most crucial for data privacy. This principle restricts access to data only to those individuals who require it to perform their specific job functions. By limiting access to data in this way, the risk of unauthorized access and potential data breaches is minimized, thereby protecting sensitive information and maintaining privacy.

Question 7 of 281
Which of the following should FIRST be established before a privacy office starts to develop a data protection and privacy awareness campaign?
    Correct Answer: B

    Before developing a data protection and privacy awareness campaign, it is crucial to first establish the strategic goals of the organization. Understanding these goals ensures that the campaign aligns with the organization's broader mission and objectives, thereby enhancing its effectiveness and relevance. This foundational step helps in tailoring the campaign to support the organizational direction and priorities.

Question 8 of 281
Which of the following features should be incorporated into an organization’s technology stack to meet privacy requirements related to the rights of data subjects to control their personal data?
    Correct Answer: B

Question 9 of 281
Which of the following is the GREATEST concern for an organization subject to cross-border data transfer regulations when using a cloud service provider to store and process data?
    Correct Answer: D

Question 10 of 281
When configuring information systems for the communication and transport of personal data, an organization should:
    Correct Answer: B