Cybersecurity - Compliance and Governance
A company wants to minimize GDPR compliance risks by limiting data retention. Which approach aligns best with GDPR requirements?
A company wants to minimize GDPR compliance risks by limiting data retention. Which approach aligns best with GDPR requirements?
hard🧠 Conceptual Q8 of 15
Step-by-Step Solution
Solution:
Step 1: Understand GDPR data retention principle
GDPR requires personal data to be kept no longer than necessary for the purpose it was collected.Step 2: Analyze options
Keep personal data only as long as necessary for the purpose collected follows GDPR. Immediate deletion may break business needs. Indefinite retention violates GDPR. Waiting for user request is insufficient.Final Answer:
Keep personal data only as long as necessary for the purpose collected -> Option CQuick Check:
GDPR retention = Limit data storage time [OK]
Quick Trick: Store data only as long as needed [OK]
Common Mistakes:
MISTAKES- Deleting data too soon breaking operations
- Keeping data forever without purpose
- Waiting for user to ask before deleting
Master "Compliance and Governance" in Cybersecurity
Want More Practice?
15+ quiz questions · All difficulty levels · Free
Free Signup - Practice All QuestionsMore Cybersecurity Quizzes