What is the primary purpose of classifying data within an organization's security policy?
To reduce the overall cost associated with data storage and management
To assign a level of sensitivity to data and determine appropriate security controls
To reduce the amount of data stored by the organization
To increase the intrinsic value of the organization's data