ISC2 Certified Cloud Security Professional (CCSP) Practice Question
A multinational retailer is preparing to migrate its customer-loyalty platform-which stores European Union residents' personally identifiable information-from its on-premises data center in Germany to a global public cloud provider. During the legal risk assessment, counsel asks which risk is likely to become significantly greater because the provider automatically replicates data to several geographically dispersed regions that the customer cannot precisely select. Which risk should you identify as the most critical to address?
Potential gaps in the organization's cyber-insurance coverage for its remaining on-premises infrastructure.
Loss of detailed physical access logs for the cloud provider's facilities, complicating internal security investigations.
Requirement to renegotiate proprietary middleware licenses because virtualized deployment may be considered installation on new hardware.
Exposure to conflicting and overlapping data-protection laws when the provider replicates customer data to data centers in multiple jurisdictions outside the customer's control.
In a public cloud, data is often replicated across multiple data centers to improve availability and resilience. When those data centers reside in different countries, the data becomes simultaneously subject to each jurisdiction's privacy, data-protection, law-enforcement access, and disclosure requirements. This risk of conflicting or overlapping legal obligations is far more acute in cloud environments than in traditional, single-location on-premises hosting. While software licensing, physical access logs, or insurance gaps can present concerns, they are not driven primarily by the provider's autonomous cross-border replication of customer data. Therefore, the heightened exposure to multiple-and potentially conflicting-data protection laws is the foremost legal risk that must be mitigated through contractual clauses, data-location controls, or approved regions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are conflicting and overlapping data-protection laws?
Open an interactive chat with Bash
How can a public cloud provider mitigate cross-border data risks?
Open an interactive chat with Bash
What is the General Data Protection Regulation (GDPR)?
Open an interactive chat with Bash
ISC2 Certified Cloud Security Professional (CCSP)
Legal, Risk and Compliance
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .