Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
As a Microsoft Cybersecurity Architect, you are consulting for a financial services organization that processes personal data of European Union (EU) citizens and must comply with the General Data Protection Regulation (GDPR). The organization operates in a hybrid environment, utilizing both cloud and on-premises resources. Your task is to design a solution using Microsoft Purview that ensures compliance with GDPR, focusing on data minimization, right to erasure, and demonstrating compliance through actionable insights. Which of the following approaches BEST meets these requirements? (Choose one)
A
Implement Microsoft Purview to classify and label personal data of EU citizens, and enforce data loss prevention policies to restrict unauthorized access, ensuring data protection.
B
Leverage Microsoft Purview to continuously monitor data access and usage, generating compliance reports that align with GDPR's data protection principles for audit purposes.
C
Utilize Microsoft Purview to discover, classify, and inventory all personal data of EU citizens across cloud and on-premises environments, and apply data retention and deletion policies to adhere to GDPR's data minimization and right to erasure requirements.
D
Deploy Microsoft Purview to conduct vulnerability assessments and penetration tests regularly, identifying and mitigating security risks that could lead to unauthorized access or exfiltration of personal data.