A U.S.-based financial company collects sensitive PII data from its customers, including U.S. social security numbers, biometric information, and financial records. What measures can the company take to protect the data from breaches or unauthorized access?

A. Implement multi-factor authentication
B. Implement monitoring user consent
C. Manage data accuracy
D. Introduce access controls