To address different compliance requirements, such as general data protection regulation (GDPR), personally identifiable information (PII), of health insurance Portability and Accountability Act (HIPPA) and others, a SF customer decided to categorize each data element in SF with the following:
✑ Data owner
✑ Security Level, such as confidential
✑ Compliance types such as GDPR, PII, HIPPA
A compliance audit would require SF admins to generate reports to manage compliance.
What should a data architect recommend to address this requirement?
A . Use metadata API, to extract field attribute information and use the extract to classify and build reports
B . Use field metadata attributes for compliance categorization, data owner, and data sensitivity level.
C . Create a custom object and field to capture necessary compliance information and build custom reports.
D . Build reports for field information, then export the information to classify and report for Audits.
Answer: B