Which of the following controls are generally NOT part of a Privacy Impact Assessment (PIA) review?
Which of the following controls are generally NOT part of a Privacy Impact Assessment (PIA) review?
A Privacy Impact Assessment (PIA) typically involves evaluating the collection, retention, and access controls associated with personal data to ensure compliance with privacy laws and regulations. Incident management, on the other hand, deals with how to respond to data breaches or other security events and is generally not a primary focus of a PIA, making it the least likely to be included.
incident is not included
"Incidente" (opção B) não é um controle, mas um evento. Um incidente de segurança, por exemplo, é um evento que pode afetar negativamente a segurança ou a privacidade dos dados.
Should be B
controls that are not directly related to privacy or the protection of personal data are generally not included in a Privacy Impact Assessment (PIA) review.