Your organization wants to be General Data Protection Regulation (GDPR) compliant You want to ensure that your DevOps teams can only create Google Cloud resources in the Europe regions.
What should you do?
A.
Use the org policy constraint "Restrict Resource Service Usage'* on your Google Cloud organization node.
B.
Use Identity and Access Management (1AM) custom roles to ensure that your DevOps team can only create resources in the Europe regions
C.
Use the org policy constraint Google Cloud Platform - Resource Location Restriction" on your Google Cloud
organization node.
D.
Use Identity-Aware Proxy (IAP) with Access Context Manager to restrict the location of Google Cloud resources.
Use the org policy constraint "Google Cloud Platform - Resource Location Restriction" on your Google Cloud organization node: This organizational policy constraint allows you to restrict the locations where your resources can be created. By setting this constraint to allow only Europe regions, you can ensure compliance with GDPR and other regional regulations.
Implementation: To implement this, you need to configure the organization policy with the constraint constraints/gcp.resourceLocations. You can specify allowed regions such as europe-west1 and europe-west4 to ensure resources are only created in these locations.
References
Resource Location Restriction documentation
GDPR compliance on Google Cloud
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit