Salesforce Certified Data Architect — Question 1
A customer is operating in a highly regulated industry and is planning to implement Salesforce. The customer information maintained in Salesforce. includes the following:
1. Personally Identifiable information (PII)
2. IP restrictions on profiles organized by geographic location
3. Financial records that need to be private and accessible only by the assigned sales associate
Enterprise Security has mandated access to be restricted to users within a specific geography with detailed monitoring of user activity. Additionally, users should not be allowed to export information from Salesforce.
Which three Salesforce Shield capabilities should a data architect recommend? (Choose three.)
Answer options
- A. Event monitoring to monitor all user activity.
- B. Encrypt sensitive customer information maintained in Salesforce.
- C. Prevent sales users access to customer PII information.
- D. Restrict access to Salesforce from users outside specific geography.
- E. Transaction Security policies to prevent export of Salesforce data.
Correct answer: A, B, E
Explanation
The correct answers are A, B, and E because Event Monitoring allows for tracking user activities, Encryption secures sensitive data, and Transaction Security policies can prevent data export. Option C is incorrect as it doesn't align with the requirements to restrict access to PII specifically, while option D is more about access control rather than monitoring or security features provided by Salesforce Shield.