ExamTopics Logo
Mail Us[email protected]
Menu
Iapp Discussions
exam questions

Exam CIPT All Questions

View all questions & answers for the CIPT exam
Go to Exam

Exam CIPT topic 1 question 82 discussion

Actual exam question from IAPP's CIPT
Question #: 82
Topic #: 1
[All CIPT Questions]

To comply with the Sarbanes-Oxley Act (SOX), public companies in the United States are required to annually report on the effectiveness of the auditing controls of their financial reporting systems. These controls must be implemented to prevent unauthorized use, disclosure, modification, and damage or loss of financial data.
Why do these controls ensure both the privacy and security of data?

  • A. Modification of data is an aspect of privacy; unauthorized use, disclosure, and damage or loss of data are aspects of security.
  • B. Unauthorized use of data is an aspect of privacy; disclosure, modification, and damage or loss of data are aspects of security.
  • C. Disclosure of data is an aspect of privacy; unauthorized use, modification, and damage or loss of data are aspects of security.
  • D. Damage or loss of data are aspects of privacy; disclosure, unauthorized use, and modification of data are aspects of privacy.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Ssourav at Aug. 9, 2024, 3:44 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
godzilla_prod
1 week, 6 days ago
Selected Answer: C
Option C correctly aligns with the CIA framework: Confidentiality (privacy): Disclosure of data relates directly to confidentiality - controlling who can access information and preventing unauthorized disclosure. This is the privacy component. Integrity (security): Modification of data maps to integrity - ensuring data remains accurate and unaltered by unauthorized parties. Availability (security): Damage or loss of data relates to availability - ensuring data remains accessible and usable when needed. Unauthorized use (security): While not explicitly part of the CIA acronym, unauthorized use crosses all three areas but particularly affects confidentiality and integrity. The SOX controls address all three components of the CIA triad: They protect confidentiality by controlling disclosure (privacy) They ensure integrity by preventing unauthorized modification They maintain availability by preventing damage or loss
upvoted 1 times
...
Ssourav
7 months ago
Selected Answer: A
A. Modification of data is an aspect of privacy; unauthorized use, disclosure, and damage or loss of data are aspects of security.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago