Certified Cloud Security Professional (CCSP) — Question 194

There is a large gap between the privacy laws of the United States and those of the European Union. Bridging this gap is necessary for American companies to do business with European companies and in European markets in many situations, as the American companies are required to comply with the stricter requirements.
Which US program was designed to help companies overcome these differences?

Answer options

• A. SOX
• B. HIPAA
• C. GLBA
• D. Safe Harbor

Correct answer: D

Explanation

The Safe Harbor program was established to provide a framework for US companies to comply with EU privacy laws, thereby facilitating transatlantic trade. SOX, HIPAA, and GLBA address different regulatory areas and do not specifically target the privacy law differences between the US and the EU.