ExamTopics Logo
Mail Us[email protected]
Menu
Isaca Discussions
exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam
Go to Exam

Exam CISA topic 1 question 1091 discussion

Actual exam question from Isaca's CISA
Question #: 1091
Topic #: 1
[All CISA Questions]

Which of the following is MOST important to include in a data retention policy to reduce legal liabilities associated with information life cycle management?

  • A. Ensuring that unnecessary data is not stored.
  • B. Reducing the cost of data storage through media sanitization.
  • C. Ensuring that personal information is destroyed.
  • D. Requiring that data be securely wiped so it cannot be restored for legal discovery.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by saado9 at March 21, 2023, 7:37 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Swallows
11 months, 3 weeks ago
Selected Answer: A
Not storing unnecessary data is crucial for legal risk mitigation and compliance. By minimizing the data you store, you reduce the risk of data leakage and legal liability.
upvoted 1 times
...
KAP2HURUF
1 year, 6 months ago
Selected Answer: A
In summary, while not storing unnecessary data (Option A) is a foundational principle of data management that can reduce overall legal liabilities, securely wiping data (Option D) is more directly focused on the specific legal risks associated with data discovery in legal proceedings. The choice between these options depends on the primary concern and specific context of the organization's data retention policy.
upvoted 1 times
...
FAGFUR
1 year, 7 months ago
Selected Answer: C
The most important element to include in a data retention policy to reduce legal liabilities associated with information life cycle management is ensuring that personal information is destroyed. This is particularly crucial for complying with privacy regulations and protecting individuals' sensitive data. The secure and proper destruction of personal information is a key component in managing legal liabilities and demonstrating compliance with data protection laws.
upvoted 1 times
...
3008
1 year, 10 months ago
Selected Answer: A
A data retention policy is the first step in helping protect an organization’s data and avoid financial, civil, and criminal penalties that increasingly accompany poor data management practices. By ensuring that unnecessary data is not stored,
upvoted 2 times
...
BabaP
2 years, 1 month ago
Selected Answer: A
I am stuck between A and D
upvoted 4 times
...
saado9
2 years, 3 months ago
why not C. Ensuring that personal information is destroyed. ?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel