Which of the following is a regulatory requirement?

The correct answer is E. a, b and c only because HIPAA, GDPR, and CCPA are all regulatory requirements that organizations may need to follow when collecting, processing, storing, sharing, or protecting data. In AI and data-driven business environments, regulatory compliance is important because AI systems often depend on large volumes of personal, sensitive, customer, health, or behavioral data.

HIPAA is a United States healthcare regulation that protects sensitive patient health information. GDPR is a European Union data protection regulation that governs personal data processing, privacy rights, consent, data minimization, and accountability. CCPA is a California privacy law that gives consumers rights related to personal information, including access, deletion, and opt-out rights. These regulations affect how organizations design AI systems, manage data governance, ensure privacy, reduce risk, and maintain responsible AI practices.

Since all three listed items are valid regulatory requirements, the correct answer is E. a, b and c only .