Certified Data Privacy Solutions Engineer (CDPSE) — Question 1

Which key stakeholder within an organization should be responsible for approving the outcomes of a privacy impact assessment (PIA)?

Answer options

• A. Data custodian
• B. Privacy data analyst
• C. Data processor
• D. Data owner

Correct answer: D

Explanation

The correct answer is D, as the data owner is ultimately responsible for the management and protection of the data, making them the appropriate person to approve the outcomes of a PIA. The data custodian (A) manages the data but does not have final approval authority, while the privacy data analyst (B) and data processor (C) are involved in analysis and processing, respectively, but do not hold the responsibility for approval.