What are basic access control practices relevant to inquiries?

• A. Use secure login, least privilege, role-based access, and audit trails for data access.
• B. Keep all data universally accessible.
• C. Reuse passwords across accounts.
• D. Disable logging to protect privacy.

Answer: (D)

Ensuring only the right people can access data starts with verifying who they are (secure login), then limiting what they can do (least privilege) and organizing permissions by role (role-based access). Keeping an audit trail records who accessed what and when, which is essential for accountability and detecting misuse. When these elements are in place, inquiries about data access can be answered transparently and securely. The other options miss important security principles: making data universally accessible breaks confidentiality; reusing passwords introduces a simple point of failure and weakens authentication; and turning off logging removes visibility into access events, undermining both security and accountability.