isaca · CDPSE · Q426 · multiple_choice · topic_1

How can an organization BEST ensure its vendors are complying with data privacy requirements defined in their contracts?

How can an organization BEST ensure its vendors are complying with data privacy requirements defined in their contracts?

A.Review self-attestations of compliance provided by vendor management.
B.Obtain independent assessments of the vendors’ data management processes.
C.Perform penetration tests of the vendors’ data security.
D.Compare contract requirements against vendor deliverables.

Explanation

B. Obtain independent assessments of the vendors’ data management processes.

Reference: examtopics_top_comment

Practice with progress tracking

Sign in to track wrong answers, get spaced-repetition reminders, and run timed exam mode.

Start tracked practice Pricing