ACME Tech, an international software development company, has failed a recent audit due to not keeping adequate records of its European users' data activities. As a security manager, what is the most immediate action to take to rectify this situation and prevent substantial financial repercussions from European regulatory authorities?
Deploy an updated firewall and intrusion prevention system to better protect the perimeter of the corporate network.
Correct the record-keeping deficiencies to conform to the data protection standards set forth by European authorities.
Initiate a comprehensive review of the company's physical and electronic access controls.
Arrange an immediate security training session for the development team to reinforce best practices in secure coding.