Certified Data Privacy Solutions Engineer (CDPSE) — Question 43

An organization has a policy requiring the encryption of personal data if transmitted through email. Which of the following is the BEST control to ensure the effectiveness of this policy?

Answer options

• A. Provide periodic user awareness training on data encryption.
• B. Implement a data loss prevention (DLP) tool.
• C. Conduct regular control self-assessments (CSAs).
• D. Enforce annual attestation to policy compliance.

Correct answer: B

Explanation

The correct answer is B because a data loss prevention (DLP) tool directly monitors and prevents the unauthorized transmission of sensitive data, ensuring compliance with the encryption policy. While periodic training (A), self-assessments (C), and attestation (D) are useful, they do not provide the same level of direct enforcement as a DLP tool.