Ultimate access to all questions.
As a Microsoft Cybersecurity Architect, you are tasked with designing a solution for a financial services organization that processes personal data of European Union (EU) citizens. The organization must comply with the EU's ePrivacy Directive, which requires strict handling and protection of personal data. The solution must ensure compliance by addressing data discovery, access control, and monitoring to prevent unauthorized access or disclosure. Additionally, the solution should be scalable to accommodate future growth and must not incur unnecessary costs. Considering these requirements, which of the following approaches using Microsoft Priva would BEST ensure compliance with the ePrivacy Directive? (Choose one option)
A
Implement Microsoft Priva to automatically classify and label personal data of EU citizens, and apply encryption to all data at rest and in transit to meet compliance requirements.
B
Configure Microsoft Priva to continuously monitor data access and usage patterns across cloud and on-premises environments, and automate the generation of compliance reports for auditing purposes.
C
Utilize Microsoft Priva to discover and catalog all personal data of EU citizens stored across the organization's environments, enforce strict access controls, and ensure only authorized personnel can access the data, thereby demonstrating compliance with the ePrivacy Directive.
D
Deploy Microsoft Priva to conduct regular security assessments and penetration tests on systems storing personal data of EU citizens, identifying vulnerabilities that could lead to data breaches and ensuring timely remediation.