An international e-commerce company is migrating customer databases to a cloud provider. To comply with GDPR and similar statutes, the security architect must ensure that all EU customer data is stored and processed only within EU member-state data centers. Which security measure should the architect implement to enforce this requirement?
Geographic restrictions, also called data-localization or data-sovereignty controls, enforce policies that keep specified data inside designated national or regional boundaries. By limiting where data can be stored or processed, they help organizations satisfy regulations like the GDPR. Encryption, VPNs, or NAT do not by themselves confine the physical or legal location of the data, and general file-transfer limits do not provide location-based enforcement.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are examples of laws that enforce geographic restrictions?
Open an interactive chat with Bash
How are geographic restrictions technically implemented?
Open an interactive chat with Bash
Why are geographic restrictions critical for compliance?