Question 4
Domain 3: Privacy, Data Stewardship, and User RightsAn AI team wants to reduce privacy risk while still allowing analysts to work with records that can be linked back to the same individual through a reversible substitute value rather than a direct identifier. Which technique is most appropriate?
Correct answer: B
Explanation
Use anonymization when re-identification should not be possible, pseudonymization when identifiers are replaced but linkage can be preserved, aggregation when only group-level results are needed, and access controls to limit who can use data. — Source material: "Select appropriate techniques such as anonymization, pseudonymization, aggregation, and access controls."
Why each option is right or wrong
A. Anonymization
Anonymization removes identifying linkage rather than preserving a reversible connection to the same person.
B. Pseudonymization
The scenario requires records to remain linkable to the same individual through a substitute value instead of a direct identifier. Among the listed techniques, pseudonymization is the one that replaces identifiers while preserving that linkage for analysis.
C. Aggregation
Aggregation combines data into group-level results instead of maintaining individual-level linked records.
D. Access controls
Access controls restrict who can view or use data, but they do not replace identifiers with substitute values.