CompTIA Security Plus Mock Test Q477

A security administrator is auditing a database server to ensure the correct security measures are in place to protect the data. Some of the fields consist of people’s first name, last name, home address, date of birth and mothers last name. Which of the following describes this type of data?

A. PII
B. PCI
C. Low
D. Public

Correct Answer: A
Section: Compliance and Operational Security

Explanation:
PII is any type of information/data and portion of data that can be used to trace back to a person and is usually data like personally identifiable information such as first names, last names, home address, date of birth, etc.

Incorrect Answers:
B: PCI refers to the payment card industry or even PCI adapters; certainly not personal information on a database.
C: Low data does not comprise of personally identifiable data.
D: Public data is not used to ensure the correct security measures to protect data on a database.

References:
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, p. 113