QUESTION 1 Who must comply with the GDPR? Oa. Only European businesses. b. Any for-profit business, anywhere in the world. O c. Any organization that processes personal data of people in the EU d. No organization. Like the NIST Cybersecurity Framework, the GDPR is voluntaryQUESTION 2 What is the distinction between Cybersecurity and Data Privacy? O a. There is no difference, they're virtually indistinguishable. O b. Data privacy is the outcome of Cybersecurity. O c. Data privacy is how an individual keeps their information secret; cybersecurity is how businesses keep their information secret. O d. Cybersecurity is the protection of systems from intrusion; data privacy has to do with the collection, storage, and dissemination of personal information. QUESTION 3 Current US privacy law can best be described as: O a. A fundamental right explicitly guaranteed by the US Constitution. O b. A patchwork of federal industry-specific laws and state laws. O c. An area of law reserved for the states. O d. None of the above