Which term describes a piece of personal data that alone may not identify an individual?
Which term describes a piece of personal data that alone may not identify an individual?A . Unbundled dataB . A singularityC . Non-aggregated infopointD . A single attributeView AnswerAnswer: A
Which of the following controls does the PCI DSS framework NOT require?
Which of the following controls does the PCI DSS framework NOT require?A . Implement strong asset control protocols.B . Implement strong access control measures.C . Maintain an information security policy.D . Maintain a vulnerability management program.View AnswerAnswer: A
To improve the facility's system of data security, Anton should consider following through with the plan for which of the following?
SCENARIO Please use the following to answer the next QUESTION: Henry Home Furnishings has built high-end furniture for nearly forty years. However, the new owner, Anton, has found some degree of disorganization after touring the company headquarters. His uncle Henry had always focused on production C not data processing C...
What should you do first to ascertain additional information about the loss of data?
SCENARIO Please use the following to answer the next QUESTION: It's just what you were afraid of. Without consulting you, the information technology director at your organization launched a new initiative to encourage employees to use personal devices for conducting business. The initiative made purchasing a new, high-specification laptop computer...
How could the objection to Spencer's training suggestion be addressed?
SCENARIO Please use the following to answer the next QUESTION: Natalia, CFO of the Nationwide Grill restaurant chain, had never seen her fellow executives so anxious. Last week, a data processing firm used by the company reported that its system may have been hacked, and customer data such as names,...
Which of the following is the most effective control to enforce MessageSafe's implementation of appropriate technical countermeasures to protect the personal data received from A&M LLP?
SCENARIO Please use the following to answer the next QUESTION: John is the new privacy officer at the prestigious international law firm C A&M LLP. A&M LLP is very proud of its reputation in the practice areas of Trusts & Estates and Merger & Acquisition in both U.S. and Europe....
What would best help accomplish this goal?
SCENARIO Please use the following to answer the next QUESTION: As they company’s new chief executive officer, Thomas Goddard wants to be known as a leader in data protection. Goddard recently served as the chief financial officer of Hoopy.com, a pioneer in online video viewing with millions of users around...
Based on Albert’s observations regarding recent security incidents, which of the following should he suggest as a priority for Treasure Box?
SCENARIO Please use the following to answer the next QUESTION: For 15 years, Albert has worked at Treasure Box C a mail order company in the United States (U.S.) that used to sell decorative candles around the world, but has recently decided to limit its shipments to customers in the...
Rationalizing requirements in order to comply with the various privacy requirements required by applicable law and regulation does NOT include which of the following?
Rationalizing requirements in order to comply with the various privacy requirements required by applicable law and regulation does NOT include which of the following?A . Harmonizing shared obligations and privacy rights across varying legislation and/or regulators.B . Implementing a solution that significantly addresses shared obligations and privacy rights.C . Applying...
Which of the following is a TRUE statement about the relationship among the organizations?
SCENARIO Please use the following to answer the next QUESTION: John is the new privacy officer at the prestigious international law firm C A&M LLP. A&M LLP is very proud of its reputation in the practice areas of Trusts & Estates and Merger & Acquisition in both U.S. and Europe....