Which of the following is not a privacy issue that is related to using a social networking site?

Why might a company ban use of the corporate network and desktop software for personal communications?

A. The company wants employees to focus 100% of their energy on job duties.

B. The company might be held responsible for inappropriate content posted by its employees.

C. The company has purchased, and therefore owns, the network and software.

D. The company's resources are too limited to allow personal use.

B. The company might be held responsible for inappropriate content posted by its employees.

For legal reasons, a company might ban use of the corporate network and desktop software for personal communications. This is because the company may be held liable for inappropriate content posted by its employees. The issue of privacy is also complex and it is often better for both the company and the employee to use corporate systems for business communications only.
Although a company would likely prefer all employee effort be focused on performing job duties, this is likely not the reason for restricting personal use of corporate information resources.
While it is true that the company owns the network and resources, the reason for limiting personal use is more likely related to legal liability, not greed.
While some company resources are limited due to financial or non-technical reasons, the primary motive for restricting personal use is because the company may be held responsible for employee conduct.

What type of information would NOT be considered confidential and governed by classification and handling procedures?

A. Company confidential information

B. Website information

C. Customer information

D. Personally identifiable information

B. Website information

Information that is deemed available for public consumption would not be considered confidential and would not need to be governed by classification and handling procedures. An example of this would be information posted to a public website, like company physical location and retail store hours of operation.
Company confidential information is a category of information that includes marketing plans, contracts, procedures, diagrams, and financial information. This information is confidential.
Customer information is data collected by a company with the consent of customers and may include shipping address and credit card account numbers. This information is confidential.
Personally identifiable information is data that can be used to identify, contact, or locate an individual and may include Social Security Number (SSN), date of birth, and street address. This information is confidential.

Which of the following is NOT a privacy issue that is related to using a social networking site?

A. You need to control how far the information that you post to the site is distributed.

B. You need to ensure that private information is physically shredded prior to disposal.

C. You need to know how the company processes, stores, and transfers or sells any data it collects about you.

D. You can never take back information that is publicly posted, as others may have downloaded or duplicated it.

B. You need to ensure that private information is physically shredded prior to disposal.

Social networking sites offer unique ways to communicate and share information; however, privacy issues may arise from using the social network. One privacy issue that is NOT related to social media is the need to physically shred private information prior to disposal. This privacy concern is related to physical security.
The need to control how far posted information gets distributed is a privacy concern. You could make information private, accessible to close friends only, accessible to all your contacts, or accessible to anyone.
The need to know how a social media company processes, stores, and transfers or sells any data it collects about you is considered a privacy concern. This includes information you post and your activity on the site.
Understanding that publicly posted information can never be made private again is a concern related to social media privacy.

What is a Standard Operating Procedure (SOP)?

A. Policies that include privilege management, data/information handling, incident response, and use of company devices

B. A measure by which to evaluate compliance with the policy

C. General instructions for when situations have not been fully assessed or because the decision-making process is too complex

D. An inflexible, step-by-step listing of the actions that must be completed for any given task

D. An inflexible, step-by-step listing of the actions that must be completed for any given task

A Standard Operating Procedure (SOP) is an inflexible, step-by-step listing of the actions that must be completed for any given task. Most critical tasks should be governed by SOPs.
A measure by which to evaluate compliance with policy is called a standard.
General instructions for when situations have not been fully assessed or because the decision-making process is too complex describes a form of guidance called guidelines.
Policies that include privilege management, data/information handling, incident response, and use of company devices are called operational policies. Standard Operating Procedures (SOP) may be drafted based on these policies.