Your company is in the process of expanding its operations into a new country. As the security architect, you are tasked with ensuring compliance with data handling regulations specific to the new location. Which of the following strategies should be your primary focus to maintain adherence to data sovereignty requirements concerning the storage and processing of customer data?
Institute robust access controls for all customer data irrespective of its storage location.
Store and process all customer data within the same country where your customers reside.
Encrypt all customer data to ensure its confidentiality, regardless of its geographic location.
Regularly back up customer data to an offshore data center to ensure its availability.
|Threats, Vulnerabilities, and Mitigations
|Security Program Management and Oversight
|General Security Concepts