Certified Information Privacy Technologist (CIPT) — Question 254

An organization must terminate their cloud vendor agreement immediately. What is the most secure way to make the encrypted data stored inaccessible?

Answer options

• A. Extract a copy of the data into a protected environment before requesting deletion.
• B. Replace Personally Identifiable Information (PII) with tokenized data.
• C. Obtain a destruction certificate from the cloud vendor.
• D. Destroy all encryption keys associated with the data.

Correct answer: D

Explanation

The correct answer is D, as destroying all encryption keys ensures that the encrypted data cannot be accessed or decrypted. Options A and C do not guarantee data security after termination, and option B only addresses PII, not the overall encrypted data security.