Universal Health is planning to store patient notes in Salesforce. Patient notes consist of long text notes taken by a use to document phone calls with a patient.
A date audit has identified that these notes can contain Personally Identifiable Information (PII) and Personal Health Information (PHI). The regulatory requirements state that this data must be encrypted at rest as well as in transit.
What should the Architect do in order to make sure Universal Health stays compliant?

• A.Use an Apex trigger and the Apex Crypto class to encrypt patient notes as soon as they are saved to Salesforce.
• B.Create a new Custom Field of type "Text (Encrypted)" and move the patient notes data into the new field.
• C.Enable Salesforce Shield Platform Data Encryption and mark the patient notes field as encrypted.
• D.No action is required; all Salesforce data is encrypted at rest as part of Salesforce's standard trust measures.

Comment: *

Name: *

Email: *

Verification: *

Universal Containers (UC) wants to reduce the amount of redundant leads entered into the system. UC also wants to ensure that leads are only edited/reassigned by the lead owner.
What organization wide default (OWD) approach should be recommended to help UC implement these requirements?

• A.Implement a Public Read Only OWD on Lead.
• B.Implement a Public Read/Write OWD on Lead.
• C.Implement a Private OWD on Lead.
• D.Implement a Public Read Only/Transfer OWD on Lead.

Comment: *

Name: *

Email: *

Verification: *

Universal Container has a private sharing model on Accounts. Apex Managed Sharing is required to share certain account records with all users who are assigned to a specific Role in the Role Hierarchy. What should be the recommended way for the Architect to implement this?

• A.Create an AccountShare record associated to a public group containing the users in the Role
• B.Create an AccountShare record associated to a public group containing the Role
• C.Create an AccountSare record associated to the required Role
• D.Create an AccountShare record associated to each user who is assigned to the Role

Comment: *

Name: *

Email: *

Verification: *

What is the best practice for testing sharing and visibility changes?

• A.Use Field Audit Trail to audit the field meta-data and visibility.
• B.Use the Sharing button to test Profile and Permission set changes.
• C.Use the Login As feature for a sample user in each role and profile.
• D.Use Administrative and User reports to view the Active Users.

Comment: *

Name: *

Email: *

Verification: *

What should the Architect do to ensure Field-Level Security is enforced on a custom Visualforce page using the Standard Lead Controller?

• A.Use the {!Schema.sObjectType.Lead.fields.isAccessible()} expression
• B.Nothing; Field-Level Security will automatically be enforced.
• C.Use the "With Sharing" keyword on the Standard Lead Controller.
• D.Use the Schema.SObject.Lead.isAccessible() method.
  <apex:outputText value="{!contactName}" rendered="{!$ObjectType.Contact.fields.Name.Accessible}" />

Comment: *

Name: *

Email: *

Verification: *