EXIN Foundation in IT Service Management based on ISO/IEC 20000 — Question 8

What is the best way to comply with legislation and regulations for personal data protection?

Answer options

• A. Performing a threat analysis
• B. Maintaining an incident register
• C. Performing a vulnerability analysis
• D. Appointing the responsibility to someone

Correct answer: D

Explanation

The correct answer is D, as appointing someone responsible for data protection ensures accountability and compliance with regulations. Options A and C focus on analysis rather than compliance, while B, while useful, does not address the proactive assignment of responsibility necessary for effective personal data protection.