Certified Data Privacy Solutions Engineer (CDPSE) — Question 135

Of the following, who is the BEST resource for determining which privacy laws must be followed for data that crosses international borders?

Answer options

• A. The legal counsel for the organization that plans to collect the data
• B. The government in the country where the data is initially collected
• C. The chief information security officer (CISO) in the country that processes the data
• D. The chief risk officer (CRO) for the organization that plans to collect the data

Correct answer: A

Explanation

The legal counsel for the organization that plans to collect the data is the best resource because they are knowledgeable about the applicable laws and regulations regarding data privacy. The government may have guidelines, but they do not provide organizational-specific legal advice. The CISO and CRO may have insights into data management and risk but lack the legal expertise necessary to determine the specific privacy laws that apply.