CompTIA SecurityX (CAS-005) — Question 100

Which of the following best explains the business requirement a healthcare provider fulfills by encrypting patient data at rest?

Answer options

• A. Securing data transfer between hospitals
• B. Providing for non-repudiation of data
• C. Reducing liability from identity theft
• D. Protecting privacy while supporting portability

Correct answer: D

Explanation

The correct answer is D because encrypting patient data at rest helps protect the privacy of sensitive information while allowing it to be portable for authorized access. Options A and C do not directly address the need for data privacy and portability, while B relates to data integrity rather than the specific business requirement of protecting patient information.