Answer-first summary for fast verification
Answer: Organization Policy Service constraints
The question focuses on meeting data residency requirements for customer data at rest within specific geographic boundaries. Organization Policy Service constraints (Option A) are the correct solution because they allow administrators to restrict where new resources can be created using the 'resource locations' constraint, ensuring data is stored only in permitted geographic regions. This is a proactive, policy-based approach that aligns with compliance needs. The community discussion strongly supports Option A with 100% consensus and upvoted comments citing Google Cloud documentation. Other options are less suitable: Shielded VM instances (B) enhance security but don't control data location; Access control lists (C) manage permissions, not residency; Geolocation access controls (D) and Google Cloud Armor (E) are for network security and access, not data storage location enforcement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
An organization is migrating from a private cloud to Google Cloud, and their compliance team requires that customer data at rest must remain within specific geographic boundaries. As a consultant, what is the recommended method to meet these data residency requirements in Google Cloud?
A
Organization Policy Service constraints
B
Shielded VM instances
C
Access control lists
D
Geolocation access controls
E
Google Cloud Armor
No comments yet.