Mark works as a Network Security Administrator for uCertify Inc. The organization is using an intranet to distribute information to its employees. A database residing on the network contains employees’ information, such as employee name, designation, department, phone extension, date of birth, date of joining, etc. He is concerned about the security because the database has all information about employees, which can help an unauthorized person to recognize an individual.
Which Personally Identifiable Information should be removed from the database so that the unauthorized person cannot identify an individual?
A.
Date of birth
B.
Employee name
C.
Employee code
D.
Date of joining
Explanation:
According to the scenario, date of birth is uniquely identified information that can help the unauthorized person to recognize an individual. Therefore, Mark should remove date of birth of all employees from the database.