The security policy that states this is:

Corporate policy states that the systems administrator should not be present during system audits.
The security policy that states this is:

A.
Separation of duties.

B.
Mandatory vacation.

C.
Non-disclosure agreement.

D.
Least privilege.