ISACA Certified Artificial Intelligence Auditor (CAIA) — Question 2

A healthcare organization uses patient data to train an AI model for early disease detection. Which of the following practices provides the BEST assurance that personal data is secure and its integrity is maintained?

Answer options

• A. Implementing strict data access controls and conducting security tests
• B. Encrypting stored data to reduce exposure and log access
• C. Updating the AI model with new data and tracking changes
• D. Anonymizing patient data and performing regular quality checks

Correct answer: D

Explanation

Option D is the best choice because anonymizing patient data reduces the risk of personal identification, while regular quality checks ensure the data's accuracy and reliability. Options A, B, and C, while useful, do not provide the same level of assurance regarding the personal data's confidentiality and integrity as anonymization does.