Organizations that adopt minimum levels of security to establish a future legal defense may need to verify that they have done what any prudent organization would do in similar circumstances; this is known as a standard of due care.

Question

Quizplus · Accepted Answer

This statement is true. A standard of due care is a legal term that refers to the level of prudence and caution an organization must take to protect sensitive information, and can be used as evidence in legal disputes to prove that an organization took reasonable measures to protect their data.

Organizations That Adopt Minimum Levels of Security to Establish a Future