Certified Information Privacy Technologist (CIPT) — Question 241

A company is looking to adopt new technology which the privacy technologist on the project believes may be unethical from a privacy standpoint. How should the privacy technologist respond?

Answer options

• A. Stop the project by exercising veto rights.
• B. Implement privacy technical measures to help mitigate the identified privacy risks.
• C. Advise the project team about legal mechanisms it could adopt to manage the ethical considerations.
• D. Perform an audit of privacy controls post implementation to show leadership how unethical the project actually was.

Correct answer: B

Explanation

The correct answer is B because implementing privacy technical measures can proactively address and mitigate the identified privacy risks, ensuring the technology is used ethically. Stopping the project (A) may not be feasible or constructive, while advising on legal mechanisms (C) or auditing after implementation (D) does not address the immediate need for risk mitigation.