nerdexam
ExamsCAS-003Questions#657
CompTIA

CAS-003 · Question #657

CAS-003 Question #657: Real Exam Question with Answer & Explanation

The correct answer is D: complete a security questionnaire focused on data privacy.. Expanding into Europe triggers compliance obligations under the General Data Protection Regulation (GDPR), which imposes strict requirements on how personal data is collected, processed, stored, and transferred. A security questionnaire focused on data privacy is the appropriate

Question

An organization based in the United States is planning to expand its operations into the European market later in the year Legal counsel is exploring the additional requirements that must be established as a result of the expansion. The BEST course of action would be to

Options

  • Arevise the employee provisioning and deprovisioning procedures
  • Bcomplete a quantitative risk assessment
  • Cdraft a memorandum of understanding
  • Dcomplete a security questionnaire focused on data privacy.

Explanation

Expanding into Europe triggers compliance obligations under the General Data Protection Regulation (GDPR), which imposes strict requirements on how personal data is collected, processed, stored, and transferred. A security questionnaire focused on data privacy is the appropriate tool to identify current gaps against GDPR requirements and define the remediation roadmap. Revising provisioning/deprovisioning procedures (A) may be a downstream action but is not the first step. A quantitative risk assessment (B) is useful but does not directly address the specific legal/regulatory requirements of GDPR. A memorandum of understanding (C) is an agreement between parties and does not help assess or achieve regulatory compliance.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CAS-003 Practice