A data engineering team is managing a single Delta Lake table that ingests data from several Kafka topics. They have two primary requirements for data governance and compliance:

Access to records from the 'registration' topic (which contains PII) must be restricted to authorized users.

Records from the 'registration' topic must be deleted 14 days after ingestion, while all other non-PII records must be retained indefinitely.

Which of the following solutions satisfies these requirements while maintaining high performance?

Real Exam

Last updated: January 6, 2026 at 15:42

Partition the Delta table by the topic field. This enables the use of directory-level Access Control Lists (ACLs) or Unity Catalog row filters for access restriction and allows for efficient, metadata-only DELETE operations based on partition boundaries.

Implement a biweekly job that deletes all data in the table, then use Delta Lake's Time Travel functionality to recover and provide access to the non-PII historical records.

Store the PII and non-PII data in the same table but use separate underlying object storage containers for each partition to ensure isolation at the physical storage layer.

Since the PII data is stored within a binary type field, it is automatically excluded from PII classification, meaning no specific access controls or deletion policies are required.

Partition the data using a custom boolean field named is_registration. Apply Access Control Lists (ACLs) to the resulting directory and execute DELETE statements against this flag._

Databricks Certified Data Engineer - Professional

Comments

Get started today