Question

Tyrone works for a financial services provider. He is told by the legal department that all records pertaining to certain types of data must be kept for a minimum of seven years. After talking with management about the requirements of the legal department, he agrees that a formal policy needs to be drafted to detail this information. Which of the following should Tyrone create?

a. Data retention policy
b. Data classification policy
c. Data watchdog policy
d. Data ownership policy

Answer 1

Tyrone should draft a Data Retention Policy, which outlines the timeframes for retaining different types of data in compliance with legal requirements.

Step-by-step explanation:

Tyrone should create a Data Retention Policy. This policy will outline how long the financial services provider is required to retain certain types of data, in compliance with legal and regulatory standards. A Data Retention Policy specifies the duration that different categories of data must be stored before they can be securely deleted. It is distinct from a Data Classification Policy, which would categorize data based on its sensitivity; a Data Watchdog Policy, which isn't a standard term used in data policy management; and a Data Ownership Policy, which would specify the proprietorship of data within the organization.