Certified Data Privacy Solutions Engineer (CDPSE) — Question 201

Which of the following is the BEST control to secure application programming interfaces (APIs) that may contain personal information?

Answer options

• A. Encrypting APIs with the organization’s private key
• B. Requiring nondisclosure agreements (NDAs) when sharing APIs
• C. Restricting access to authorized users
• D. Sharing only digitally signed APIs

Correct answer: C

Explanation

Restricting access to authorized users is crucial because it ensures that only individuals with the right permissions can access sensitive data. While encrypting APIs, NDAs, and sharing digitally signed APIs can enhance security, they do not directly prevent unauthorized access like restricting access does.