Exam CAS-004 topic 1 question 186 discussion

I believe it's right. Data controller. The individual or organization determining what personal data to collect and how it will be used. Data processors. The individual or organization processing personal data for the controller.

https://openli.com/dictionary/gdpr-roles

Data Controller (E): The data controller determines the purposes and means of the processing of personal data. In other words, they decide why and how personal data will be processed. The organization, as the entity collecting personal data from its global customers and determining its use and processing, acts as the data controller. Data Steward (D): The data steward is responsible for the management and oversight of data within the organization. They ensure that data is handled responsibly, in compliance with relevant regulations such as GDPR. The data steward may oversee data governance policies, data quality, and data lifecycle management to ensure that personal data is processed appropriately and securely.

C. Data owner E. Data controller Explanation: To comply with the General Data Protection Regulation (GDPR), an organization needs to establish roles and responsibilities for handling personal data. The key roles relevant to GDPR compliance include: C. Data owner: The data owner is responsible for making decisions about how personal data is handled, used, and processed within the organization. They define the purpose and scope of data processing activities. E. Data controller: The data controller is a key role defined by GDPR. The controller determines the purposes and means of processing personal data. Essentially, the data controller is the entity that decides why and how personal data is processed. This role has a high level of responsibility for ensuring compliance with data protection regulations.