Which of the following practices MOST effectively safeguards the processing of personal data?

• A.Personal data attributed to a specific data subject is tokenized.
• B.Data retention guidelines are documented, established, and enforced.
• C.Data protection impact assessments are performed on a regular basis.
• D.Personal data certifications are performed to prevent excessive data collection.

Comment: *

Name: *

Email: *

Verification: *

All business units within an organization have the same risk response plan for creating local disaster recovery plans. In an effort to achieve cost effectiveness., the BEST course of action would be to:

• A.evaluate opportunities to combine disaster recovery plans
• B.outsource disaster recovery to an external provider
• C.select a provider to standardize the disaster recovery plans
• D.centralize the risk response function at the enterprise level

Comment: *

Name: *

Email: *

Verification: *

A business unit is implementing a data analytics platform to enhance its customer relationship management (CRM) system primarily to process data that has been provided by its customers. Which of the following presents the GREATEST risk to the organization's reputation?

• A.Use of a data analytics system is not disclosed to customers.
• B.Revenue generated is not disclosed to customers.
• C.Third-party software is used for data analytics.
• D.Data usage exceeds individual consent.

Comment: *

Name: *

Email: *

Verification: *

Which of the following provides the MOST useful information to assess the magnitude of identified deficiencies in the IT control environment?

• A.Business impact analysis (BIA) results
• B.Threat analysis results
• C.Peer benchmarks
• D.Internal audit reports

Comment: *

Name: *

Email: *

Verification: *

Which of the following is the MOST important aspect to ensure that an accurate risk register is maintained?

• A.Publish the risk register in a knowledge management platform with workflow features that periodically contacts and polls risk assessors to ensure accuracy of content
• B.Perform regular audits by audit personnel and maintain risk register
• C.Submit the risk register to business process owners for review and updating
• D.Monitor key risk indicators, and record the findings in the risk register

Comment: *

Name: *

Email: *

Verification: *