Answer: D - A Privacy Professional may likely advise an organization to comply with stricter privacy laws and data protection regulations to satisfy applicable laws when portions of its customer and database are covered under those laws and regulations. Other factors come into consideration when making such a recommendation and organizational decision.
This recommendation and the resulting decision may be made when the organization is contracting with new data processors and wants to get ahead of potential and foreseeable shifts in its legal requirements for privacy compliance. The cost of updating data processors and data processor agreements may be reduced significantly by acknowledging and accounting for foreseeable shifts and updates to applicable laws or regulations.