CompTIA PenTest+ PT0-002 Practice Question
The General Data Protection Regulation (GDPR) requires a company to obtain explicit consent from individuals before a penetration tester is allowed to access their personal data during a security assessment.
True
False