When a company decides to outsource the destruction of their old storage devices containing sensitive data, which of the following considerations is the MOST important to ensure data confidentiality and regulatory compliance?
The vendor should provide a certificate of destruction/recycling that confirms the data destruction meets regulatory standards.
The vendor should be able to repurpose the devices for environmental sustainability.
The company should choose a vendor that offers the lowest price to maintain budget efficiency.
The vendor should be located in close proximity to the company to reduce logistics costs.
The correct answer ensures that the outsourced vendor is trustworthy and follows industry-standard processes for data destruction, which complies with relevant regulations and protects the company's sensitive information. While the other options could be considerations, they are secondary to verifying the vendor's compliance and trustworthiness. Certificates of destruction/recycling provided by the vendor serve as official documentation that the data was destroyed according to the regulatory standards, which is essential for audits and compliance checks.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What regulations should the vendor's data destruction process comply with?
Open an interactive chat with Bash
What is a certificate of destruction, and why is it important?
Open an interactive chat with Bash
What are some secure methods for data destruction used by vendors?