New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Isaca CDPSE Exam - Topic 10 Question 66 Discussion

Actual exam question for Isaca's CDPSE exam
Question #: 66
Topic #: 10
[All CDPSE Questions]

Which of the following should be done FIRST to establish privacy to design when developing a contact-tracing application?

Show Suggested Answer Hide Answer
Suggested Answer: A

Conducting a privacy impact assessment (PIA) should be done first to establish privacy by design when developing a contact-tracing application. A PIA is a systematic process that identifies and evaluates the potential effects of personal data processing operations on the privacy of individuals and the organization. A PIA helps to identify privacy risks and mitigation strategies at an early stage of development and ensures compliance with legal and regulatory requirements. Conducting a development environment review, identifying privacy controls, or identifying differential privacy techniques are important steps in privacy by design, but they should be done after conducting a PIA.Reference:CDPSE Exam Content Outline, Domain 2, Task 2.1


by Dorthy at Jun 16, 2025, 01:16 AM

Limited Time Offer

25%

Off

Get Premium CDPSE Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Gracia
2 months ago
Not sure if A is the best choice here...
upvoted 0 times
...
Miesha
2 months ago
I think C should come before A.
upvoted 0 times
...
Marti
3 months ago
Totally agree with A, it's crucial!
upvoted 0 times
...
Merlyn
3 months ago
Surprised that A isn't a given!
upvoted 0 times
...
Luther
3 months ago
A is definitely the first step!
upvoted 0 times
...
Earlean
3 months ago
Differential privacy techniques sound important, but I don't think they should come first. I feel like a PIA is definitely the way to go.
upvoted 0 times
...
Rikki
4 months ago
I’m leaning towards identifying privacy controls as the first step, but I could be mixing it up with another question we did.
upvoted 0 times
...
Tequila
4 months ago
I remember a practice question where we had to identify privacy controls first, but I feel like a PIA might be more foundational.
upvoted 0 times
...
Michael
4 months ago
I think the first step should be conducting a privacy impact assessment, but I'm not entirely sure if that's the right order.
upvoted 0 times
...
Sue
4 months ago
Differential privacy techniques could be really important for a contact-tracing app, so I'd start by looking into those options.
upvoted 0 times
...
Stephaine
4 months ago
From what I remember, the key is to identify the appropriate privacy controls for the application. That seems like the logical first step to me.
upvoted 0 times
...
Kenneth
5 months ago
Hmm, I'm not sure. Shouldn't we first review the development environment to ensure it's secure and set up properly for privacy?
upvoted 0 times
...
Maddie
5 months ago
I think the first step would be to conduct a privacy impact assessment (PIA) to identify any potential privacy risks and how to mitigate them.
upvoted 0 times
...
Keith
8 months ago
Privacy controls, schmaivacy controls. I just want to know who's been in contact with who. The rest is just red tape, am I right?
upvoted 0 times
Billy
7 months ago
Privacy is important to protect user data.
upvoted 0 times
...
Leontine
7 months ago
C) Identify privacy controls for the application.
upvoted 0 times
...
Melissa
8 months ago
A) Conduct a privacy impact assessment (PIA).
upvoted 0 times
...
...
Vanda
8 months ago
Differential privacy techniques? Sounds like we're trying to crack the Enigma code or something. Keep it simple, folks!
upvoted 0 times
...
Lai
8 months ago
Development environment review? Nah, that's putting the cart before the horse. Privacy comes first in contact tracing!
upvoted 0 times
Patti
8 months ago
C) Identify privacy controls for the application.
upvoted 0 times
...
Tommy
8 months ago
A) Conduct a privacy impact assessment (PIA).
upvoted 0 times
...
...
Teri
8 months ago
I think identifying privacy controls for the application should come first to establish privacy.
upvoted 0 times
...
Shawnda
8 months ago
I agree with Lavonna. It's important to assess the privacy impact before anything else.
upvoted 0 times
...
Lavonna
8 months ago
I think the first step should be conducting a privacy impact assessment (PIA).
upvoted 0 times
...
Domitila
8 months ago
A privacy impact assessment should definitely be the first step. Gotta cover those privacy bases, you know?
upvoted 0 times
Silvana
7 months ago
C) Identify privacy controls for the application.
upvoted 0 times
...
Izetta
8 months ago
Absolutely, that's the first thing to do to ensure privacy.
upvoted 0 times
...
Carlton
8 months ago
A) Conduct a privacy impact assessment (PIA).
upvoted 0 times
...
...

Save Cancel