Protecting Data Flashcards
Data that is kept secret among a certain group of people is known as:
a) Confidential data
b) Private data
Confidential Data
PII and PHI is data that comes under what classification?
Private Data
What data policy activity ensures users know what data they are handling and the value of it?
data labeling
Which data destruction technique is used for SSDs?
Erasing and overwriting (or Destroying)
For information to be PII you have to connect at least what?
two types of PII together
What procedures help reduce the loss of PII
data classification and labeling procedures
Which law mandates that organizations protect PHI?
Health Insurance Portability and Accountability Act - HIPAA
Which act provides a rule requiring financial institutions to provide consumers with a privacy notice explaining what information they collect and how that information is used.
Gramm-Leach Bliley Act (GLBA).
Which act requires that executives within an
organization take individual responsibility for the accuracy of financial reports?
Sarbanes-Oxley Act (SOX).
Which data role is often in a high level position and is responsible for identifying the classification of the data, ensuring
the data is labeled to match the classification, and ensuring security controls are implemented to protect the data.
Owner
Which data role typically handles the routine tasks to protect the data?
Steward/custodian
Which data role ensures the organization is complying with relevant laws regarding the data?
Privacy Officer