Step by Step Comprehensive Detailed Explanation with References:
Option A: Risk transfer involves shifting the risk to another party, such as through insurance. Simply informing customers does not transfer the risk.
Option B: Risk mitigation involves taking steps to reduce the severity or likelihood of the risk. Informing and obtaining consent does not mitigate the risk but acknowledges it.
Option C: Risk avoidance involves changing plans to entirely avoid the risk. Informing customers of the risk is not avoiding it but rather acknowledging it.
Option D: Risk acceptance involves recognizing the risk and deciding to proceed with it. By informing customers and obtaining their consent, the organization acknowledges the risk and accepts it as part of their operations.
References:
IAPP CIPT Study Guide
Risk management frameworks and practices in privacy
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit