Isaca Exam CDPSE Topic 3 Question 61 Discussion

Actual exam question for Isaca's CDPSE exam

Question #: 61
Topic #: 3

Which of the following is the BEST way for an organization to limit potential data exposure when implementing a new application?

AImplement a data loss prevention (DLP) system.

BUse only the data required by the application.

CEncrypt all data used by the application.

DCapture the application's authentication logs.

Show Suggested Answer

Suggested Answer: D

Privacy by design is an approach that embeds privacy principles and considerations into the design and development of products, services, systems, and processes that involve personal dat

a. Privacy by design aims to protect the privacy and security of the data subjects, as well as to comply with the applicable privacy laws and regulations. One of the key principles of privacy by design is to obtain the consent and choice of the data subjects regarding the collection, use, and disclosure of their personal data. Therefore, the best example of privacy by design in the development of a consumer mobile application is to require consent before sharing locations, as this gives the data subjects control and transparency over their personal data. The other options are not as effective or sufficient as requiring consent before sharing locations, as they do not address the principle of consent and choice, or they may violate other privacy principles or requirements.

by Lera at Feb 10, 2025, 08:18 AM

Limited Time Offer

25%

Off

Get Premium CDPSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lou

1 months ago

Hold up, so we're talking about limiting data exposure, not making the IT guy's job easier. Encrypt all the things, I say!

upvoted 0 times

...

Dolores

1 months ago

I hear ya, guys. Encrypting all the data is like putting a padlock on a goldfish bowl - it's a bit overkill, don't you think?

upvoted 0 times

Kimbery

13 days ago

C) Encrypt all data used by the application.

upvoted 0 times

...

Ciara

13 days ago

B) Use only the data required by the application.

upvoted 0 times

...

Lauran

16 days ago

A) Implement a data loss prevention (DLP) system.

upvoted 0 times

...

Beckie

2 months ago

Option D might be good for tracking down any breaches, but it's not going to actually prevent the data exposure in the first place. B and C are the way to go here.

upvoted 0 times

...

Refugia

2 months ago

Hmm, I'm going with C. Encrypting everything is the surest way to keep that sensitive data under lock and key. Better safe than sorry, am I right?

upvoted 0 times

Dominga

19 days ago

C) Encrypt all data used by the application.

upvoted 0 times

...

Renea

24 days ago

B) Use only the data required by the application.

upvoted 0 times

...

Rolande

1 months ago

A) Implement a data loss prevention (DLP) system.

upvoted 0 times

...

Dewitt

2 months ago

I'm torn between B and C. Encrypting all data is a great way to protect it, but you have to make sure you're only using what you need in the first place.

upvoted 0 times

...

Tyra

2 months ago

The best way to limit data exposure is definitely option B - using only the data required by the application. Anything extra is just asking for trouble!

upvoted 0 times

...