Certified Cloud Security Professional (CCSP) — Question 254

Which United States law is focused on PII as it relates to the financial industry?

Answer options

• A. HIPAA
• B. SOX
• C. Safe Harbor
• D. GLBA

Correct answer: D

Explanation

The Gramm-Leach-Bliley Act (GLBA) specifically addresses the protection of personally identifiable information (PII) in the financial industry, making it the correct answer. HIPAA is related to healthcare information, SOX pertains to corporate governance and financial practices, and Safe Harbor refers to data privacy frameworks, not specifically to financial PII.