SnowPro Advanced: Architect — Question 179

A company uses Snowflake to store and analyze their customer data. The company has a strict regulatory requirement to protect Personally Identifiable Information (PII).

What should an Architect do to meet this requirement?

Answer options

• A. Use row-level security to mask PII data.
• B. Use tag-based masking policies for columns that contain PII data.
• C. Create secure views for the PII data and grant access to the views as needed.
• D. Create separate tables for columns containing PII and those that do not; grant access as needed

Correct answer: B

Explanation

The correct answer is B because tag-based masking policies allow for dynamic masking of PII data based on the user's role, thereby effectively protecting sensitive information. While row-level security (A) and secure views (C) provide certain levels of protection, they do not specifically address the need for masking data. Creating separate tables (D) can complicate data management and does not inherently provide the necessary masking of PII.