CompTIA PenTest+ (PT0-002) — Question 160

An assessment has been completed, and all reports and evidence have been turned over to the client. Which of the following should be done NEXT to ensure the confidentiality of the client's information?

Answer options

• A. Follow the established data retention and destruction process.
• B. Report any findings to regulatory oversight groups.
• C. Publish the findings after the client reviews the report.
• D. Encrypt and store any client information for future analysis.

Correct answer: A

Explanation

The correct answer is A because following the data retention and destruction process ensures that all client information is handled properly and securely disposed of when no longer needed. Options B and C involve disclosing information, which could compromise confidentiality, while D suggests storing information rather than ensuring its secure disposal.