Certified Data Privacy Solutions Engineer (CDPSE) — Question 106

Which of the following scenarios poses the GREATEST risk to an organization from a privacy perspective?

Answer options

• A. The organization lacks a hardware disposal policy.
• B. Emails are not consistently encrypted when sent internally.
• C. Privacy training is carried out by a service provider.
• D. The organization’s privacy policy has not been reviewed in over a year.

Correct answer: D

Explanation

The greatest risk arises when the organization’s privacy policy remains unreviewed for over a year, as it may not comply with current regulations or address new threats. While the other scenarios indicate potential privacy issues, they do not represent as significant a risk as the failure to regularly update the privacy policy, which is essential for safeguarding sensitive information.