Question 24
Domain 1: Privacy Program Framework and StrategyAn organization is building a privacy program and wants to define its core program components. Which set of components should be included?
Correct answer: B
Explanation
Core privacy program components are the foundational governance elements used to direct and manage the program: policies, standards, processes, and controls. — Identify core program components, including policies, standards, processes and controls.
Why each option is right or wrong
A. Policies, budgets, training, and audits
The identified core components are policies, standards, processes, and controls.
B. Policies, standards, processes, and controls
The source defines the core program components as policies, standards, processes, and controls. Because the organization is identifying foundational privacy program elements, this set exactly matches the required components.
C. Standards, contracts, inventories, and metrics
Core program components include policies and controls, not contracts, inventories, and metrics as the defined set.
D. Processes, controls, vendors, and committees
Vendors and committees are not listed as the core component set; policies and standards are required.