Question 15
Domain 2 — Personal Data Lifecycle ManagementWhat should be the PRIMARY consideration of a multinational organization deploying a user and entity behavior analytics (UEBA) tool to centralize the monitoring of anomalous employee behavior?
Correct answer: A
Explanation
A UEBA platform centralizes employee behavior monitoring, so the main issue is where user data is collected, stored, and analyzed. For a multinational organization, the key legal concern is "cross-border data transfer" because employee activity data may move between countries and trigger privacy, data localization, and transfer restrictions.
Why each option is right or wrong
A. Cross-border data transfer
UEBA centralization typically aggregates logs, identity data, and activity telemetry from multiple jurisdictions into a single analytics environment, which immediately implicates cross-border transfer rules under regimes such as GDPR Chapter V (Articles 44–49). In practice, the examiner is testing whether the organization has assessed where the data will be exported, stored, and processed, because transfers outside the originating country may require an adequacy decision, Standard Contractual Clauses, or another lawful transfer mechanism before deployment can proceed.
B. Support staff availability and skill set
Staffing affects operations, but legal data movement constraints come first in multinational monitoring.
C. User notification
Notification may be required in some jurisdictions, but it is narrower than transfer legality.
D. Global public interest
Public interest is not the primary governance factor for internal employee behavior analytics deployment.