Question 33
Domain 1: Data Collection, Use, Dissemination, and DestructionAfter users verify their identity for an access request, copies of their driver's licenses remain in a shared folder. What is the best control?
Correct answer: B
Explanation
This limits exposure of sensitive identity documents by applying data minimization and retention control: keep them only as long as needed, then delete them on a short schedule. Restricting interim access also enforces least privilege, reducing the risk that shared-folder copies of driver’s licenses are viewed or misused before deletion.
Why each option is right or wrong
A. Keep the copies permanently to speed up future requests
B. Delete the verification documents on a short schedule and restrict interim access
Driver’s license copies are sensitive identity data, so the control should align with data minimization and retention limits under privacy principles such as GDPR Art. 5(1)(c) and (e): personal data must be adequate, relevant, limited to what is necessary, and kept no longer than necessary. A short, defined deletion schedule, paired with restricted interim access, reduces the period during which the shared folder exposes those documents and enforces least privilege until they are removed.
C. Email the copies to more reviewers for backup
D. Convert the images to PDF and keep them indefinitely