Question 34
Domain 5 — Privacy Operations, Incident Response, and Continuous ImprovementWhich of the following technologies BEST facilitates protection of personal data?
Correct answer: A
Explanation
Data loss prevention (DLP) tools monitor, detect, and block unauthorized movement of sensitive information, which directly protects personal data from leakage or exfiltration. They are designed to enforce data-handling policies and stop personal data from being copied, emailed, or uploaded without permission.
Why each option is right or wrong
A. Data loss prevention (DLP) tools
Data loss prevention (DLP) tools are designed to inspect data in use, in motion, and at rest, then apply policy controls to prevent unauthorized disclosure of sensitive information. In a personal-data context, they can block copying, emailing, uploading, or transferring protected records, which directly addresses the risk of leakage or exfiltration better than general security tools.
B. Data discovery and mapping tools
Discovery and mapping locate where personal data exists, but do not directly prevent exposure.
C. Data log file monitoring tools
Log monitoring detects events after activity occurs; it is not a primary data protection control.
D. Data profiling tools
Profiling analyzes data structure and quality, not enforcement against unauthorized disclosure.