CompTIA PenTest+ (PT1-002) — Question 50

An assessment has been completed, and all reports and evidence have been turned over to the client. Which of the following should be done NEXT to ensure the confidentiality of the client's information?

Answer options

• A. Follow the established data retention and destruction process
• B. Report any findings to regulatory oversight groups
• C. Publish the findings after the client reviews the report
• D. Encrypt and store any client information for future analysis

Correct answer: A

Explanation

The correct answer is A because following the data retention and destruction process ensures that sensitive information is properly managed and disposed of according to policy. Options B and C involve actions that could compromise confidentiality by sharing findings prematurely, while option D, although it emphasizes security, does not address the immediate need for data destruction as specified.