Google Cloud Professional Data Engineer — Question 259

You are defining the data governance strategy for a new BigQuery table with medical and financial data. You want a scalable solution that ensures the clinical researchers can access patient medical data without financial information, while allowing the accounting team to access only financial data with minimal patient identifiers. What should you do?

Answer options

• A. Implement column-level security policies in BigQuery tables with IAM permissions.
• B. Create separate tables for personally identifiable information (PII), financial data, and anonymized medical data. Use IAM permissions to control access to each table.
• C. Implement row-level security policies in BigQuery tables with IAM permissions.
• D. Create separate datasets with authorized views exposing only approved data.

Correct answer: D

Explanation

The correct answer is D because creating separate datasets with authorized views allows for controlled access to only the necessary data for each user group, ensuring compliance with privacy regulations. Options A and C focus on security at the column and row levels, which do not provide the same level of granularity needed for different user access. Option B, while it separates data, does not utilize authorized views, which are essential for ensuring only approved data is accessed.