Question 33
Domain 5 — Privacy Operations, Incident Response, and Continuous ImprovementWhich of the following MUST be available to facilitate a robust data breach management response?
Correct answer: D
Explanation
A robust breach response depends on knowing what was exposed and who may be affected. An inventory of affected individuals and systems supports containment, notification, and remediation by identifying the scope of the incident and the parties that must be contacted or protected.
Why each option is right or wrong
A. Lessons learned from prior data breach responses
Past lessons improve preparedness, but they do not identify the current breach’s scope.
B. Best practices to obfuscate data for processing and storage
Obfuscation is a preventive control, not the required inventory for active breach response.
C. An inventory of previously impacted individuals
Previously impacted individuals may be unrelated; responders need those affected in this incident.
D. An inventory of affected individuals and systems
Under a breach-response framework, the first operational requirement is to identify the scope of the incident so containment, notification, and remediation can be directed to the right records and people. An inventory of affected individuals and systems is the control that lets the organization determine which data subjects are implicated, which assets were compromised, and whether statutory notice deadlines and remediation steps must be triggered; without that inventory, the response cannot be reliably executed or evidenced.