A financial services company is launching a new application for customers in Australia. Due to strict national regulations, all personally identifiable information (PII) collected from these customers must remain within the country's borders. Which of the following cloud strategies BEST addresses this data locality requirement?
Deploy storage resources in the cloud provider's Australian region and configure policies to prevent cross-region replication.
Implement end-to-end encryption for all customer data using keys managed in a separate, highly secure region.
Configure strict IAM policies and multifactor authentication for all personnel who access customer PII.
Isolate the application's resources in a dedicated virtual network that is segmented from all other corporate services.
Data locality requires that data be stored and processed in a specific geographic location to comply with legal and regulatory mandates. Deploying storage resources in a cloud provider's Australian region and using policies to block replication outside of that region directly enforces this requirement. While encryption, IAM, and network segmentation are crucial security controls, they do not inherently restrict the geographic location of the data.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the importance of adhering to geographic data storage mandates?
Open an interactive chat with Bash
How does storing data in region-specific facilities differ from encryption?
Open an interactive chat with Bash
What are some examples of legal frameworks enforcing data residency requirements?