If a file contains employee names, birthdates, and social security numbers, what is the recommended confidentiality stance for internal access?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the MTTC Business Management, Marketing, and Technology Test with our comprehensive study materials. Access flashcards and multiple choice questions with hints and explanations. Ace your exam!

Multiple Choice

If a file contains employee names, birthdates, and social security numbers, what is the recommended confidentiality stance for internal access?

Explanation:
Protecting sensitive personal data through least-privilege access and data minimization is the main idea. Social security numbers and birthdates are highly sensitive PII; exposing them internally increases the risk of identity theft and misuse. Internal access should be limited to those who need it to do their jobs, and information should be minimized to what is necessary for the task at hand. In this case, the safest stance is to withhold both birthdates and social security numbers from general internal access, allowing access only to the minimum identifiers needed (like names) and to escalate to secure systems with proper authorization if verification is required. Sharing data for convenience or exposing SSNs or birthdates unnecessarily would raise risk and conflict with confidentiality principles. Thus, the recommended stance is to restrict access and protect these sensitive fields by default.

Protecting sensitive personal data through least-privilege access and data minimization is the main idea. Social security numbers and birthdates are highly sensitive PII; exposing them internally increases the risk of identity theft and misuse. Internal access should be limited to those who need it to do their jobs, and information should be minimized to what is necessary for the task at hand. In this case, the safest stance is to withhold both birthdates and social security numbers from general internal access, allowing access only to the minimum identifiers needed (like names) and to escalate to secure systems with proper authorization if verification is required. Sharing data for convenience or exposing SSNs or birthdates unnecessarily would raise risk and conflict with confidentiality principles. Thus, the recommended stance is to restrict access and protect these sensitive fields by default.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy