ServiceNow Certified Implementation Specialist – Risk and Compliance — Question 103

Why would a company need to comply with the General Data Protection Regulation?

Answer options

• A. It stores credit card information
• B. It faces the most pervasive cyber-threats
• C. It processes data from individuals in the European Union
• D. It is publicly traded in the United States

Correct answer: C

Explanation

The correct answer is C because the General Data Protection Regulation applies to any organization that processes personal data of individuals located in the European Union, regardless of where the organization is based. Options A, B, and D do not directly relate to the obligations set by the GDPR, making them incorrect in this context.