CIPM Practice Q22

A. Training records, vendor invoices, marketing plans, and office seating charts

Evidence should cover governance, decisions, controls, and remediation status rather than general administrative records.

B. Governance records, decision logs, control documentation, and remediation status updates

The source states that evidence of governance should include governance, decisions, controls, and remediation status. This set matches all four required categories for demonstrating ongoing accountability.

C. Incident statistics, employee surveys, budget forecasts, and project charters

Incident data alone does not satisfy the need to document governance, decisions, controls, and remediation status.

D. Policy drafts, system architecture diagrams, audit schedules, and customer complaints

Evidence must specifically include decisions and remediation status, not just related program artifacts.

Question 22

Explanation

Why each option is right or wrong