What is a poor information security practice that can contribute to information loss?

The correct answer highlights a significant vulnerability in information security practices that can lead to information loss. Failure to guard documents in manual systems indicates a lack of basic protective measures and oversight for sensitive information that may be physically stored, such as paper documents. Without adequate security protocols in place—such as locked filing cabinets or restricted access to sensitive areas—those documents are susceptible to theft, loss, or unauthorized access.

In contrast, implementing rigorous data retention policies, practicing data minimization, and providing password protection are considered good practices that strengthen information security. Data retention policies ensure that information is kept only as long as necessary, minimizing the risk of retaining unnecessary or outdated information. Data minimization involves limiting the data collected to what is strictly necessary for the intended purpose, thus reducing exposure to potential breaches. Providing password protection adds a layer of security by ensuring that only authorized individuals can access sensitive data. Therefore, the failure to safeguard documents in manual systems stands out as a poor practice that can significantly compromise information integrity and confidentiality.