CISSP · Question #1192
CISSP Question #1192: Real Exam Question with Answer & Explanation
The correct answer is B: Only the EU residents' data. The data that must be handled according to the privacy protections of General Data Protection Regulation (GDPR) is only the EU residents' data. GDPR is a regulation that aims to protect the personal data and privacy of the individuals who reside in the European Union (EU), and to
Question
An organization with divisions in the United States (US) and the United Kingdom (UK) processes data comprised of personal information belonging to subjects living in the European Union (EU) and in the US. Which data MUST be handled according to the privacy protections of General Data Protection Regulation (GDPR)?
Options
- AOnly the EU citizens' data
- BOnly the EU residents' data
- COnly the UK citizens' data
- DOnly data processed in the UK
Explanation
The data that must be handled according to the privacy protections of General Data Protection Regulation (GDPR) is only the EU residents' data. GDPR is a regulation that aims to protect the personal data and privacy of the individuals who reside in the European Union (EU), and to harmonize the data protection laws and practices across the EU member states. GDPR applies to any organization that processes the personal data of the EU residents, regardless of the location, citizenship, or nationality of the data subjects, or the organization. Therefore, the organization with divisions in the US and the UK must handle only the EU residents' data according to the GDPR, and comply with the GDPR requirements and obligations, such as the data protection principles, the data subject rights, the data breach notification, or the data protection impact
Topics
Community Discussion
No community discussion yet for this question.