An IS auditor should use statistical sampling and not judgment (nonstatistical) sampling, when:
A、the probability of error must be objectively quantified.
B、the auditor wishes to avoid sampling risk.
C、generalized audit software is unavailable.
D、the tolerable error rate cannot be determined.