Google Cloud Professional Cloud Architect — Question 67

Your web application must comply with the requirements of the European Union's General Data Protection Regulation (GDPR). You are responsible for the technical architecture of your web application. What should you do?

Answer options

• A. Ensure that your web application only uses native features and services of Google Cloud Platform, because Google already has various certifications and provides ג€pass-onג€ compliance when you use native features.
• B. Enable the relevant GDPR compliance setting within the GCPConsole for each of the services in use within your application.
• C. Ensure that Cloud Security Scanner is part of your test planning strategy in order to pick up any compliance gaps.
• D. Define a design for the security of data in your web application that meets GDPR requirements.

Correct answer: D

Explanation

The correct answer is D because defining a security design that meets GDPR requirements is essential for compliance. While option A mentions the use of native features, it does not guarantee comprehensive compliance on its own. Option B focuses on settings which are necessary but insufficient without a foundational design. Option C, while helpful for identifying gaps, does not directly address the need for a robust compliance framework.