Which of the following is the PRIMARY consideration to ensure control of remote access is aligned to the privacy policy?

Which of the following is the PRIMARY consideration to ensure control of remote access is aligned to the privacy policy?
A . Access is logged on the virtual private network (VPN).
B . Multi-factor authentication is enabled.
C . Active remote access is monitored.
D . Access is only granted to authorized users.

View Answer

Answer: D

Explanation:

The primary consideration to ensure control of remote access is aligned to the privacy policy is that access is only granted to authorized users. This means that the organization should implement and enforce policies and procedures to identify, authenticate, and authorize users who need to access personal data remotely, such as employees, contractors, or service providers. The organization should also define and communicate the roles and responsibilities of remote users, and the terms and conditions of remote access, such as the purpose, scope, duration, and security measures. By granting access only to authorized users, the organization can protect data privacy by preventing unauthorized or unnecessary access, use, disclosure, or transfer of personal data.

Reference: CDPSE Review Manual (Digital Version), page 107