You find a printed document marked as ‘Confidential’ on the desk of your colleague who has left for the day. What action would you take?
a. Leave the document on the desk since the work area is access controlled
b. Ignore it, as it doesn’t concern you
c. Take the document home with you so that you can safely hand it over to your colleague the next day
d. Shred the document or drop it in the nearest locked drop box for shredding
The correct answer and explanation is :
Correct Answer: d. Shred the document or drop it in the nearest locked drop box for shredding
Explanation:
When encountering a printed document labeled “Confidential” that has been left unattended, the most appropriate and responsible action is to safeguard the sensitive information it contains. Option (d)—shredding it or placing it in a locked drop box for secure shredding—aligns best with data privacy policies, organizational security protocols, and ethical workplace conduct.
Confidential documents often contain sensitive personal, business, or proprietary information that could cause harm if accessed by unauthorized individuals. Even if the work area is access-controlled, leaving the document on the desk (option a) still poses a security risk, especially if cleaning staff or visitors pass through. Ignoring it (option b) also neglects the responsibility to protect sensitive information and could result in a data breach. Taking the document home (option c) introduces further risk by removing it from a secure environment, possibly violating company policy and legal regulations regarding data handling.
By choosing option (d), you are ensuring that the document does not fall into the wrong hands. Most organizations have protocols for the disposal of sensitive materials, such as locked shred bins, which are collected and destroyed by certified vendors. If you’re unsure whether the document should be shredded or returned, it’s also acceptable to secure it in a locked drawer or hand it over to a supervisor, but never take it home.
Taking proactive steps to protect confidential information is a key part of maintaining trust, legal compliance (such as with HIPAA or GDPR, if applicable), and professional integrity. Organizations rely on every employee to treat sensitive information responsibly, and acting to protect it reflects good judgment and respect for privacy and security protocols.