Certified Information Systems Security Professional (CISSP) Practice Exam

An example of Personally Identifiable Information (PII) is a person's name and their contact information because PII includes any data that can be used to identify an individual. This encompasses a variety of information pieces—particularly those that, when combined, can reveal the identity of a person. A name and contact information, like an address or phone number, directly relate to an individual and can be used to track them, reach them, or even link to other sensitive data about them.

In contrast, the weather in a specific location does not identify any individual, which means it doesn’t qualify as PII. Publicly available financial reports typically contain aggregated data that does not identify individuals, focusing instead on business or organizational performance and trends. Similarly, statistical data about a community reflects broader patterns or trends without linking back to any specific person, thus also not meeting the criteria for PII.