Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

IAPP Exam CIPM Topic 2 Question 48 Discussion

Actual exam question for IAPP's CIPM exam
Question #: 48
Topic #: 2
[All CIPM Questions]

For an organization that has just experienced a data breach, what might be the least relevant metric for a company's privacy and governance team?

Show Suggested Answer Hide Answer
Suggested Answer: C

Contribute your Thoughts:

Corrinne
2 months ago
Haha, Option D definitely seems like a red herring. How can 'data awareness training' be the least relevant metric when the whole point is to educate employees and prevent breaches? I'm picking C as the best answer.
upvoted 0 times
Nu
22 hours ago
I see your point, it's definitely a tough choice between C and D.
upvoted 0 times
...
Alease
2 days ago
True, but I still think Option C is the least relevant metric for the privacy and governance team.
upvoted 0 times
...
Temeka
6 days ago
I think Option B could also be a distraction, privacy rights requests may not directly relate to preventing breaches.
upvoted 0 times
...
Lilli
7 days ago
I agree, Option D does seem important, but maybe not the least relevant.
upvoted 0 times
...
Louvenia
10 days ago
That's a good point, maybe all the options are important in their own way.
upvoted 0 times
...
Kris
15 days ago
True, but having employees trained on data awareness is crucial for preventing breaches.
upvoted 0 times
...
Judy
17 days ago
I think Option C could be the least relevant because completing assessments doesn't necessarily prevent breaches.
upvoted 0 times
...
Carmen
1 months ago
I agree, Option D does seem important, but maybe not the least relevant.
upvoted 0 times
...
...
Lilli
2 months ago
But wouldn't knowing how many security patches have been applied help prevent future breaches?
upvoted 0 times
...
Cory
2 months ago
I disagree, I believe the number of employees who have completed data awareness training is the least relevant metric.
upvoted 0 times
...
Rebecka
2 months ago
I'm going with option A as the least relevant. Applying security patches is a basic security hygiene practice, and doesn't really reflect the organization's privacy and governance performance.
upvoted 0 times
Tiffiny
27 days ago
B) I agree, that seems like a routine task rather than a reflection of privacy and governance efforts.
upvoted 0 times
...
Reita
1 months ago
A) The number of security patches applied to company devices.
upvoted 0 times
...
...
Lilli
2 months ago
I think the least relevant metric would be the number of security patches applied to company devices.
upvoted 0 times
...
Melda
2 months ago
But wouldn't knowing the number of privacy rights requests exercised be more important for the privacy and governance team?
upvoted 0 times
...
Avery
2 months ago
I disagree, I believe the number of employees who have completed data awareness training is the least relevant.
upvoted 0 times
...
Reiko
2 months ago
I disagree with Carlene. The number of privacy rights requests could be a useful metric to assess the effectiveness of the organization's privacy and governance efforts. Option A seems the least relevant to me.
upvoted 0 times
Sharita
1 months ago
I see your point, but I still think focusing on security patches is key after a breach.
upvoted 0 times
...
Rosina
1 months ago
But what about the privacy rights requests? Shouldn't that be a priority too?
upvoted 0 times
...
Georgiana
2 months ago
I agree, keeping devices updated is important for security.
upvoted 0 times
...
Anissa
2 months ago
I think the number of security patches applied is crucial for preventing future breaches.
upvoted 0 times
...
...
Carlene
2 months ago
I think option B is the least relevant metric. The number of privacy rights requests is more of a reactive measure, while the organization should be focused on proactive measures to prevent future breaches.
upvoted 0 times
...
Melda
3 months ago
I think the least relevant metric would be the number of security patches applied to company devices.
upvoted 0 times
...

Save Cancel