nerdexam
Google

CLOUD-DIGITAL-LEADER · Question #243

How can a streaming service meet global compliance requirements using the cloud?

The correct answer is A. By automatically encrypting personally identifiable information. Automatically encrypting personally identifiable information (PII) is the technical mechanism that directly satisfies data protection compliance requirements across jurisdictions.

Understanding Cloud Security and Compliance

Question

How can a streaming service meet global compliance requirements using the cloud?

Options

  • ABy automatically encrypting personally identifiable information
  • BBy obtaining a business license to operate in a new market
  • CBy allowing users to disable two-factor authentication
  • DBy adhering only to data polices of the country in which the head office is registered

How the community answered

(54 responses)
  • A
    91% (49)
  • B
    2% (1)
  • C
    6% (3)
  • D
    2% (1)

Why each option

Automatically encrypting personally identifiable information (PII) is the technical mechanism that directly satisfies data protection compliance requirements across jurisdictions.

ABy automatically encrypting personally identifiable informationCorrect

Regulations such as GDPR, HIPAA, and LGPD require organizations to protect personal data through appropriate technical safeguards. Cloud platforms can automatically encrypt PII at rest and in transit, ensuring that even if data is intercepted or improperly accessed it remains unreadable. This automatic, policy-driven encryption helps a streaming service meet compliance requirements in multiple regions without manual intervention per market.

BBy obtaining a business license to operate in a new market

A business license grants legal permission to operate in a jurisdiction but does not address technical data protection obligations imposed by privacy regulations.

CBy allowing users to disable two-factor authentication

Allowing users to disable two-factor authentication weakens security posture and would likely violate, rather than satisfy, compliance requirements that mandate strong authentication.

DBy adhering only to data polices of the country in which the head office is registered

Compliance obligations apply in every country where user data is collected or processed, not only in the country of the head office, so adhering only to home-country policies creates regulatory violations abroad.

Concept tested: Cloud encryption of PII for global regulatory compliance

Source: https://cloud.google.com/security/compliance

Topics

#Cloud Compliance#Data Security#Encryption#Data Privacy

Community Discussion

No community discussion yet for this question.

Full CLOUD-DIGITAL-LEADER Practice