Certified Data Privacy Solutions Engineer (CDPSE) — Question 188
During which of the following system lifecycle stages is it BEST to conduct a privacy impact assessment (PIA) on a system that holds personal data?
Answer options
- A. Functional testing
- B. Development
- C. Production
- D. User acceptance testing (UAT)
Correct answer: B
Explanation
The best time to conduct a privacy impact assessment (PIA) is during the Development stage, as this allows for the identification and mitigation of privacy risks before the system is deployed. Conducting a PIA during Functional testing, Production, or User acceptance testing (UAT) will limit the ability to implement necessary changes to address privacy concerns effectively.