New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

PECB GDPR Exam - Topic 1 Question 4 Discussion

Actual exam question for PECB's GDPR exam
Question #: 4
Topic #: 1
[All GDPR Questions]

An organization suffered a personal data breach. The attackers gained access to their database through a user account that had unlimited access to dat

a. What should the DPO advise the organization to do in order to prevent the recurrence of similar scenarios?

Show Suggested Answer Hide Answer
Suggested Answer: A

GDPR Article 32(1)(b) emphasizes implementing access controls to ensure data security. Reviewing and restricting account permissions using the principle of least privilege (PoLP) helps prevent unauthorized access. Shared accounts (option C) increase security risks, and using cloud computing (option B) does not directly address access control vulnerabilities.


by Chara at Mar 24, 2025, 12:15 PM

Limited Time Offer

25%

Off

Get Premium GDPR Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Angelo
2 months ago
Surprised they didn't have this in place already!
upvoted 0 times
...
Tamesha
2 months ago
Shared accounts? That sounds like a bad idea.
upvoted 0 times
...
Alyce
3 months ago
Cloud services won't fix poor access management.
upvoted 0 times
...
Yolande
3 months ago
Agree, unlimited access is a huge risk.
upvoted 0 times
...
Yasuko
3 months ago
Definitely need to review access controls!
upvoted 0 times
...
Carolynn
3 months ago
I feel like reviewing user account management is crucial, but I wonder if there are other factors we should consider as well.
upvoted 0 times
...
Edwin
4 months ago
I recall a practice question where shared accounts were mentioned, but I think that could actually create more problems than it solves.
upvoted 0 times
...
Hildegarde
4 months ago
I'm not entirely sure, but I think using cloud services might not directly solve the issue of user account access. It feels like a different approach.
upvoted 0 times
...
Linette
4 months ago
I remember we discussed the importance of access control systems in class. I think option A makes the most sense for preventing future breaches.
upvoted 0 times
...
Marilynn
4 months ago
I'm a bit confused on this one. Should I consider cloud computing services as an option to mitigate the risk? Or is the focus really on the access control system? I'll need to carefully analyze the question.
upvoted 0 times
...
Denise
4 months ago
Okay, I've got this. The key is to focus on the access control system and user account management. I'll make sure to thoroughly review those areas to prevent future breaches.
upvoted 0 times
...
Nu
5 months ago
Hmm, not sure about this one. I'll need to think carefully about the best approach to prevent similar data breaches in the future. Maybe I should review the access control system and user account policies.
upvoted 0 times
...
Audry
5 months ago
This seems like a straightforward question about access control and data security. I'll focus on reviewing the access control system and ensuring proper account management.
upvoted 0 times
...
Alexia
10 months ago
A is the correct answer, no doubt. But I bet the IT team is still going to try and convince the DPO to go with C. 'It's more cost-effective!'
upvoted 0 times
Evangelina
10 months ago
DPO: Option A is the correct choice to prevent similar scenarios.
upvoted 0 times
...
Cherry
10 months ago
IT team: We should go with option C, it's more cost-effective.
upvoted 0 times
...
...
Brinda
11 months ago
C? Seriously? Shared accounts are a security nightmare waiting to happen. A is the way to go.
upvoted 0 times
Tequila
9 months ago
B) Use cloud computing services to mitigate the risk of personal data breaches
upvoted 0 times
...
Zona
9 months ago
C? Seriously? Shared accounts are a security nightmare waiting to happen. A is the way to go.
upvoted 0 times
...
Horace
9 months ago
A) Review if the access control system allows the creation, approval, review, and deletion of user accounts
upvoted 0 times
...
Dudley
10 months ago
B) Use cloud computing services to mitigate the risk of personal data breaches
upvoted 0 times
...
Rodolfo
10 months ago
C? Seriously? Shared accounts are a security nightmare waiting to happen. A is the way to go.
upvoted 0 times
...
Nydia
10 months ago
A) Review if the access control system allows the creation, approval, review, and deletion of user accounts
upvoted 0 times
...
...
Lynelle
11 months ago
Creating and using shared accounts for several users might not be a good idea as it can lead to security vulnerabilities.
upvoted 0 times
...
Lenita
11 months ago
I believe using cloud computing services could also help mitigate the risk of personal data breaches.
upvoted 0 times
...
Barbra
11 months ago
I can already hear the DPO sighing heavily at the mere suggestion of C. 'Do you want to get hacked again? No? Then we're doing A.'
upvoted 0 times
Raylene
10 months ago
I can already hear the DPO sighing heavily at the mere suggestion of C. 'Do you want to get hacked again? No? Then we're doing A.'
upvoted 0 times
...
Penney
10 months ago
C) Create and use shared accounts for several users in order to minimize the number of user accounts
upvoted 0 times
...
Ashlyn
10 months ago
B) Use cloud computing services to mitigate the risk of personal data breaches
upvoted 0 times
...
Maryln
11 months ago
A) Review if the access control system allows the creation, approval, review, and deletion of user accounts
upvoted 0 times
...
...
Annamaria
11 months ago
I agree with Ivette. It's important to ensure user accounts are created, approved, reviewed, and deleted properly.
upvoted 0 times
...
Ivette
11 months ago
I think the DPO should advise the organization to review the access control system.
upvoted 0 times
...
Ruth
11 months ago
A seems like the obvious choice here. Reviewing the access control system is key to preventing similar breaches.
upvoted 0 times
Adelle
10 months ago
I agree, reviewing the access control system is crucial in preventing breaches.
upvoted 0 times
...
Candida
10 months ago
C) Create and use shared accounts for several users in order to minimize the number of user accounts
upvoted 0 times
...
Micaela
10 months ago
B) Use cloud computing services to mitigate the risk of personal data breaches
upvoted 0 times
...
Wynell
10 months ago
A) Review if the access control system allows the creation, approval, review, and deletion of user accounts
upvoted 0 times
...
...

Save Cancel