After assessing risk, the decision to treat the risk should be based PRIMARILY on: 

Answer options:

A. availability of financial resources.
B. whether the level of risk exceeds risk appetite.
C. whether the level of risk exceeds inherent risk.
D. the criticality of the risk.

B