Which of the following frameworks should the management team follow?

SY0-601 1 Comment

A multinational organization that offers web-based services has datacenters that are located only in the United States; however, a large number of its customers are in Australia, Europe, and China. Payments for services are managed by a third party in the United Kingdom that specializes in payment gateways. The management team is concerned the organization is not compliant with privacy laws that cover some of its customers.

Which of the following frameworks should the management team follow?
A . Payment Card Industry Data Security Standard
B . Cloud Security Alliance Best Practices
C . ISO/IEC 27032 Cybersecurity Guidelines
D . General Data Protection Regulation

Answer: A

Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF     SY0-601 Questions Online Training
Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
Smith
Smith
1 year ago

The question is specifically asking what to follow to ensure compliance with “privacy laws” that affect ‘some’ of the customer base. There are no privacy laws involved in PCI DSS. Wouldn’t the answer then be GDPR , especially since some of the customer base is in Europe?

0
Reply