Explanation:
Option C offers a balanced approach that ensures compliance with multiple regulatory frameworks while also facilitating efficient data access and use. A hybrid approach allows for a broad classification based on sensitivity, which is useful for general data management, and specific categories for regulatory compliance, which are essential for legal and audit purposes.
Ultimate access to all questions.
You are working with a financial services company that needs to comply with multiple regulatory frameworks, including GDPR and SOX. How would you design a data classification scheme that ensures compliance with all relevant regulations while also facilitating efficient data access and use?
A
Create a simple classification scheme based on data sensitivity and ignore regulatory specifics.
B
Develop a complex classification scheme that includes specific categories for each regulatory requirement.
C
Use a hybrid approach that combines sensitivity-based classification with regulatory-specific categories.
D
Outsource the classification task to a third-party vendor who specializes in regulatory compliance.
No comments yet.