Which of the following is a recommended data-protection practice for PII?

Prepare for the Lifetime Training Test with comprehensive quizzes, detailed questions, and insightful explanations. Get ready to excel in your exam.

Multiple Choice

Which of the following is a recommended data-protection practice for PII?

Explanation:
Controlling who can access PII is essential for protecting it. Limiting access means only people with a legitimate need–to–know can view or work with the information, which reduces the chance of accidental or intentional disclosure. This is the practice that embodies the principle of least privilege: give individuals the minimum access necessary to do their job and regularly review who has access. The other options undermine protection: keeping data in an unlocked cabinet creates a physical security risk; leaving printed PII on a desk makes it easy for others to see or steal; and sharing passwords breaks authentication by allowing unauthorized people to impersonate authorized users.

Controlling who can access PII is essential for protecting it. Limiting access means only people with a legitimate need–to–know can view or work with the information, which reduces the chance of accidental or intentional disclosure. This is the practice that embodies the principle of least privilege: give individuals the minimum access necessary to do their job and regularly review who has access.

The other options undermine protection: keeping data in an unlocked cabinet creates a physical security risk; leaving printed PII on a desk makes it easy for others to see or steal; and sharing passwords breaks authentication by allowing unauthorized people to impersonate authorized users.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy