CertNexus Exam ITS-110 Topic 1 Question 26 Discussion

Actual exam question for CertNexus's ITS-110 exam

Question #: 26
Topic #: 1

You made an online purchase of a smart watch from a software as a service (SaaS) vendor, and filled out an extensive profile that will help you track several fitness variables. The vendor will provide you with customized health insights based on your profile. With which of the following regulations should the company be compliant? (Choose three.)

AGramm-Leach-Bliley Act (GLBA)

BPayment Card Industry Data Security Standard (PCI-DSS)

CFederal Information Security Management Act (FISMA)

DSarbanes-Oxley (SOX)

EHealth Insurance Portability and Accountability Act (HIPAA)

FFamily Educational Rights and Privacy Act (FERPA)

GFederal Energy Regulatory Commission (FERC)

Show Suggested Answer

Suggested Answer: B

by Samira at Feb 10, 2024, 02:16 PM

Limited Time Offer

25%

Off

Get Premium ITS-110 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Roxane

1 months ago

Don't forget, the vendor also needs to be PCI-DSS compliant since they're handling financial transactions. Can't let the hackers get to that credit card data!

upvoted 0 times

...

2 months ago

I agree, HIPAA is the key regulation. The vendor needs to ensure they are compliant with handling sensitive health information.

upvoted 0 times

Marva

5 days ago

C) FISMA is important for ensuring information security in federal agencies.

upvoted 0 times

...

Roxane

6 days ago

B) I think PCI-DSS is also crucial for protecting payment data.

upvoted 0 times

...

Paz

17 days ago

A) HIPAA is definitely important for handling health information.

upvoted 0 times

...

3 months ago

I think the company should be compliant with HIPAA because it deals with health information.

upvoted 0 times

...