ExamGecko
Home Home / IAPP / CIPM
Question list
Search
Search

List of questions

Search

Related questions











Question 27 - CIPM discussion

Report
Export

For an organization that has just experienced a data breach, what might be the least relevant metric for a company's privacy and governance team?

A.

The number of security patches applied to company devices.

Answers
A.

The number of security patches applied to company devices.

B.

The number of privacy rights requests that have been exercised.

Answers
B.

The number of privacy rights requests that have been exercised.

C.

The number of Privacy Impact Assessments that have been completed.

Answers
C.

The number of Privacy Impact Assessments that have been completed.

D.

The number of employees who have completed data awareness training.

Answers
D.

The number of employees who have completed data awareness training.

Suggested answer: A

Explanation:

The number of security patches applied to company devices might be the least relevant metric for a company's privacy and governance team after a data breach. While security patches are important for preventing future breaches, they do not directly measure the impact or response of the current breach. The other metrics are more relevant for assessing how the company handled the breach, such as how it complied with the privacy rights of affected individuals, how it evaluated the privacy risks of its systems, and how it trained its employees on data awareness.Reference:CIPM Study Guide, page 28.

asked 22/11/2024
victoria nagy
37 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first