To make data public

To protect data from unauthorized access

To delete sensitive data

To allow easy sharing of data

Use password-protected zip files for report transmission

Share reports on public cloud platforms without encryption

Email reports to all employees for transparency

Store reports in plain text for easy access

The NBFC could be ordered to shut down its operations for a period

A fine and regulatory sanctions for violating information security and privacy norms

Only the employee will be penalized with a warning

No penalty, as the breach was accidental

Virtual Protection Network

Very Private Network

Virtual Private Network

Verified Protection Network

Employees have unrestricted access to data, increasing the risk of data leakage

Reports are more likely to be automatically backed up

Personal laptops always comply with regulatory standards

Reports are easier to track and monitor

Reply to verify the sender

Delete the email immediately

Click on any links to check their validity

Report it to the IT team

Keep sensitive data in documents that are easily accessible to anyone in the organization

Redact or anonymize sensitive information in reports shared with non-sensitive stakeholders

Ignore the need for security controls and trust employees to handle data responsibly

Print out hard copies of all reports and store them in unsecured cabinets