Certified Data Privacy Solutions Engineer (CDPSE) — Question 203

A global organization is planning to implement a customer relationship management (CRM) system to be used in offices based in multiple countries. Which of the following is the MOST important data protection consideration for this project?

Answer options

• A. Industry best practice related to information security standards in each relevant jurisdiction
• B. Identity and access management mechanisms to restrict access based on need to know
• C. Encryption algorithms for securing customer personal data at rest and in transit
• D. National data privacy legislative and regulatory requirements in each relevant jurisdiction

Correct answer: D

Explanation

The correct answer is D because compliance with national data privacy laws is crucial when handling customer data across different countries. Options A, B, and C are important but secondary to ensuring that the organization meets the legal requirements to protect customer privacy and avoid potential legal issues.