Protecting Data

Question 1

Data that is kept secret among a certain group of people is known as:

a) Confidential data
b) Private data

Answer 1

Confidential Data

Question 2

PII and PHI is data that comes under what classification?

Answer 2

Private Data

Question 3

What data policy activity ensures users know what data they are handling and the value of it?

Answer 3

data labeling

Question 4

Which data destruction technique is used for SSDs?

Answer 4

Erasing and overwriting (or Destroying)

Question 5

For information to be PII you have to connect at least what?

Answer 5

two types of PII together

Question 6

What procedures help reduce the loss of PII

Answer 6

data classification and labeling procedures

Question 7

Which law mandates that organizations protect PHI?

Answer 7

Health Insurance Portability and Accountability Act - HIPAA

Question 8

Which act provides a rule requiring financial institutions to provide consumers with a privacy notice explaining what information they collect and how that information is used.

Answer 8

Gramm-Leach Bliley Act (GLBA).

Question 9

Which act requires that executives within an

organization take individual responsibility for the accuracy of financial reports?

Answer 9

Sarbanes-Oxley Act (SOX).

Question 10

Which data role is often in a high level position and is responsible for identifying the classification of the data, ensuring
the data is labeled to match the classification, and ensuring security controls are implemented to protect the data.

Answer 10

Owner

Question 11

Which data role typically handles the routine tasks to protect the data?

Answer 11

Steward/custodian

Question 12

Which data role ensures the organization is complying with relevant laws regarding the data?

Answer 12

Privacy Officer