Question 16

Question

You are evaluating Cloud SQL for PostgreSQL as a possible destination for your on-premises
PostgreSQL instances. Geography is becoming increasingly relevant to customer privacy worldwide.
Your solution must support data residency requirements and include a strategy to:
configure where data is stored
control where the encryption keys are stored
govern the access to data
What should you do?

Accepted Answer

Use features like customer-managed encryption keys (CMEK), VPC Service Controls, and Identity
and Access Management (IAM) policies.

Arjun N. · Answer

Option C. restricting app access based on user region, feels more direct for tough residency rules. D looks good but maybe overkill for just storage. Anyone else tripped up by that?

Zoe I. · Answer

D . Had something like this in a mock and CMEK plus IAM gives you key management, access controls, and lets you specify data location. C is tempting but D covers all requirements more completely.

LunaJ · Answer

C/D? If strict residency laws apply, C might matter, but CMEK and IAM in D usually cover encryption and access controls better.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE