Certified Data Privacy Solutions Engineer (CDPSE) — Question 39

An employee accidentally sends an email with personal data to the wrong person. Which of the following should the employee do FIRST upon becoming aware of the issue?

Answer options

• A. Notify the privacy regulator and the impacted data subjects.
• B. Send the recipient another email requesting deletion of the email that was accidentally sent.
• C. Document and file the details of what happened in anticipation of further questioning.
• D. Report the situation to the data privacy officer as it could be a privacy breach.

Correct answer: D

Explanation

The correct answer is D because reporting to the data privacy officer is crucial for managing potential privacy breaches and ensuring compliance with regulations. Options A and B are premature actions that may not address the immediate need for internal reporting, while option C, while useful, should follow the reporting process to the data privacy officer.