🔥 3-day streak
CompTIA PenTest+ (PT0-003)29 / 175
Question 29 of 175
A penetration testing firm has completed a web application assessment for a healthcare client subject to HIPAA. During testing, the team captured screenshots and database extracts containing protected health information (PHI) to demonstrate exploit impact. As the engagement closes, the client's compliance officer asks how the firm will handle the sensitive data it collected. Which action BEST satisfies the firm's obligations at engagement closeout?
Reviewed for accuracy · Report an issueNext question