An enterprise is planning to outsource data processing for personally identifiable information (PII). When is the MOST appropriate time to define the requirements for security and privacy of information?

December 11, 2021 by Admin

An enterprise is planning to outsource data processing for personally identifiable information (PII). When is the MOST appropriate time to define the requirements for security and privacy of information?

  • During the initial vendor selection process
  • After an assessment of the current information architecture 
  • When issuing requests for proposals (RFPs)
  • When developing service level agreements (SLAs)

Leave a Reply