A security consultant has been asked to research an organization’s legal obligations to protect
privacy-related information. What kind of reading material is MOST relevant to this project?

A.
The organization’s current security policies concerning privacy issues

B.
Privacy-related regulations enforced by governing bodies applicable to the organization

C.
Privacy best practices published by recognized security standards organizations

D.
Organizational procedures designed to protect privacy information