Answer-first summary for fast verification
Answer: Discover and transform PII data in both input and output by using the Cloud Data Loss Prevention (Cloud DLP) API.
The question requires preventing PII data from being communicated through a generative AI chatbot. Option B is optimal because Cloud DLP API is specifically designed to discover, classify, and transform sensitive data like PII in both input (user queries) and output (chatbot responses). This directly addresses the requirement by identifying and redacting PII before transmission. Option A (Cloud KMS) only encrypts data at rest but doesn't prevent PII from being transmitted. Option C (VPC-SC) creates network perimeters but doesn't inspect content for PII. Option D (Marketplace encryption tools) is vague and less specific than Cloud DLP's purpose-built PII detection capabilities. The community discussion shows 100% consensus on B with upvoted comments referencing Google's official guidance on keeping sensitive data out of chatbots.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
Your organization is developing a generative AI-powered chatbot for automated conversations with internal employees. You need to ensure that no personally identifiable information (PII) is transmitted through the chatbot. What should you do?
A
Encrypt data at rest for both input and output by using Cloud KMS, and apply least privilege access to the encryption keys.
B
Discover and transform PII data in both input and output by using the Cloud Data Loss Prevention (Cloud DLP) API.
C
Prevent PII data exfiltration by using VPC-SC to create a safe scope around your chatbot.
D
Scan both input and output by using data encryption tools from the Google Cloud Marketplace.