A Software as a Service (SaaS) company wants to use aggregated data from its clients to improve its services via a machine learning model. However, its contracts do not clearly allow this use of aggregated data. What should the organization do NEXT? A. Update the organization’s data processing agreement template B. Request internal risk acceptance from senior management. C. Request formal consent from clients to use their data. D. Update the organization’s privacy policy to reflect the use of aggregated data.  Suggested Answer: C This question is in CRISC exam For getting Risk and Information Systems Control Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by ISACA. The website does not contain actual questions and answers from ISACA's Certification Exams. Trademarks, certification & product names are used for reference only and belong to ISACA.
Please login or Register to submit your answer