CCSP Legal, Risk and Compliance • 20 Questions
20 CCSP Legal, Risk and Compliance practice questions with answers and explanations. Free, no signup.
A company's cloud infrastructure is subject to GDPR. The DPO requires that all customer personal data be encrypted at rest and in transit. The cloud provider offers SSE-S3 for object storage and enforces TLS 1.2 for API calls. Which additional control should the company implement to meet GDPR accountability requirements?