Data collected by a third-party vendor and provided back to the organization may not be protected according to the organization’s privacy notice. Which of the following is the BEST way to address this concern?
A.
Review the privacy policy.
B.
Obtain independent assurance of current practices.
C.
Re-assess the information security requirements.
Validation of the contract compliance is the correct answer, The Service level agreement outlines the compliance status by the third party. The organization should be keen to ensure that the contract clearly outlines the status such as registration as a data processor or controller which is the basic level of compliance for any organization conscious about data protection.
upvoted 1 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kaigai
3 months, 3 weeks ago