Certified Information Privacy Manager (CIPM) — Question 123

Which of the following privacy frameworks are legally binding?

Answer options

• A. Binding Corporate Rules (BCRs).
• B. Generally Accepted Privacy Principles (GAPP).
• C. Asia-Pacific Economic Cooperation (APEC) Privacy Framework.
• D. Organization for Economic Co-Operation and Development (OECD) Guidelines.

Correct answer: A

Explanation

Binding Corporate Rules (BCRs) are legally recognized as a means for multinational companies to ensure compliance with data protection laws across borders. In contrast, the other options, such as GAPP, APEC, and OECD Guidelines, serve more as frameworks or recommendations rather than legally binding regulations.