Question 1
UnclassifiedDuring an internal investigation, what is the best privacy practice when reviewing employee email, badge swipes, CCTV clips, and package-room logs?
Correct answer: B
Explanation
Privacy best practice is data minimization: review only what is necessary for the stated issue, rather than broad employee monitoring. Preserving evidence and limiting access to need-to-know personnel also follows standard confidentiality and chain-of-custody principles, reducing unnecessary exposure of personal information.
Why each option is right or wrong
A. Collect every available record indefinitely so nothing is missed
B. Narrow the review to the issue under investigation, preserve evidence, and restrict access to need-to-know personnel
The applicable privacy principle is data minimization, reflected in frameworks such as GDPR Article 5(1)(c), which requires personal data to be "adequate, relevant and limited to what is necessary" for the purpose, and Article 5(1)(f), which requires appropriate confidentiality and integrity. In an internal investigation, that means reviewing only the email, badge, CCTV, and log entries that are directly tied to the allegation, while preserving the evidence and limiting access to investigators or custodians with a strict need to know to avoid unnecessary disclosure of employee personal data.
C. Let any manager involved browse the records informally
D. Delete potentially relevant records once a witness interview is complete