PCI Exam CPSA Topic 1 Question 25 Discussion

Actual exam question for PCI's CPSA exam

Question #: 25
Topic #: 1

[All CPSA Questions]

During an assessment you ask to see employee records for employees with access to the HS

AThe records include information about the screening process, including background information from the employee application process. The oldest background Information that is available is for an employee that left the vendor (terminated their contract) one year previously. You note this as non-compliant, why?

AEmployee information, including background checks, must be stored for at least seven years

BEmployee information must be securely destroyed (e.g. securely wiped) within 2 years (after termination of contract)

CThe vendor must retain the background information for at least 18 months after termination of contract

DThe vendor must only retain background information for all current employees, not for those that have been terminated

Show Suggested Answer

Suggested Answer: B

by Kenny at May 18, 2024, 11:19 AM

Limited Time Offer

25%

Off

Get Premium CPSA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Linette

21 days ago

Haha, securely wiped within 2 years? What is this, the Dark Ages? Everyone knows data should be stored forever... or at least until the aliens come to take over.

upvoted 0 times

...

Roxanne

24 days ago

Ugh, these HR policy questions are the worst. I can never remember the specific retention periods. Maybe I should just guess and hope for the best.

upvoted 0 times

...

Raelene

25 days ago

Seriously? Only 1 year? That's way too short. I'm pretty sure the correct answer is A - 7 years minimum.

upvoted 0 times

...

2 months ago

Why do we need to keep employee records for so long?

upvoted 0 times

...