The finance department has started to use a new payment system that requires strict PII security restrictions on various network devices. The company decides to enforce the restrictions and configure all devices appropriately. Which of the following risk response strategies is being used? 

Answer options:

A. Avoid
B. Mitigate
C. Transfer
D. Accept

B