An organization discovers that a key vendor is not compliant with industry security standards, posing a risk to data privacy. This scenario primarily involves ____________ risk.

In this scenario, the key issue is non-compliance with industry security standards, indicating a compliance risk. Organizations must assess and manage compliance risks to ensure adherence to established standards and regulations, especially in areas affecting data privacy. Understanding the nature of compliance risks is crucial for effective risk management in cybersecurity.__________________________________________________