A Software as a Service (SaaS) company wants to use aggregated data from its clients to improve its services via a machine learning model. However, its contracts do not clearly allow this use of aggregated data. What should the organization do NEXT?
A.
Update the organization’s data processing agreement template
B.
Request internal risk acceptance from senior management.
C.
Request formal consent from clients to use their data.
D.
Update the organization’s privacy policy to reflect the use of aggregated data.
D. Update the organization’s privacy policy to reflect the use of aggregated data.
Updating the privacy policy to include provisions regarding the use of aggregated data allows the organization to inform its clients transparently about how their data will be used. This step is essential for ensuring compliance with privacy regulations and maintaining trust with clients.
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.CRISC Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Baddest
10 months ago