Protecting confidential data in accounts payable requires secure practices to prevent unauthorized access. Locking your computer when leaving your work area (Option A), turning off your monitor and securing papers when approached (Option C), and shredding or securely disposing of unneeded documents (Option D) are recommended techniques to safeguard sensitive information. However, saving reports to a portable USB drive and giving it to a requestor (Option B) is not recommended, as USB drives are easily lost, stolen, or compromised, posing a significant security risk compared to secure email or file-sharing systems.
The web source from Esker states: “To protect confidential AP data, lock computers when unattended, secure physical documents, and use secure disposal methods. Avoid using portable devices like USB drives for data transfer due to security risks.” This directly supports Options A, C, and D, while identifying Option B as an insecure practice.
The IOFM APS Certification Program covers “Internal Controls,” including data security practices. The curriculum’s emphasis on “peer-tested best practices” aligns with secure data handling, ruling out the use of USB drives for sensitive reports.
[References:, IOFM Accounts Payable Specialist (APS) Certification Program, covering Internal Controls, Esker: “To protect confidential AP data, lock computers when unattended, secure physical documents… Avoid using portable devices like USB drives”, ]
