CompTIA CySA+ (CS0-001) — Question 102

Which of the following policies BEST explains the purpose of a data ownership policy?

Answer options

• A. The policy should describe the roles and responsibilities between users and managers, and the management of specific data types.
• B. The policy should establish the protocol for retaining information types based on regulatory or business needs.
• C. The policy should document practices that users must adhere to in order to access data on the corporate network or Internet.
• D. The policy should outline the organization's administration of accounts for authorized users to access the appropriate data.

Correct answer: D

Explanation

The correct answer, D, accurately reflects the purpose of a data ownership policy, which is to manage user access to data. Options A, B, and C focus on roles, retention protocols, and access practices but do not specifically address the administration aspect of data ownership.