fix for acronlinx

ceperezb · ceperezb · commit 8c8c62a851e2 · 2026-03-31T14:51:56.000-04:00
diff --git a/learn-pr/wwl-sci/describe-security-concepts-methodologies/includes/6-describe-compliance-concepts.md b/learn-pr/wwl-sci/describe-security-concepts-methodologies/includes/6-describe-compliance-concepts.md
@@ -55,7 +55,7 @@ Some compliance-related concepts include:
 
 - **Data residency**: Data residency regulations govern the physical locations where data can be stored and how and when it can be transferred, processed, or accessed internationally. These regulations can differ significantly depending on jurisdiction. When using cloud services, organizations need to verify where the cloud provider physically stores their data and whether those locations meet applicable data residency requirements.
 
-- **Data sovereignty**: Data sovereignty refers to the concept that data is subject to the laws and regulations of the country or region where it's physically collected, held, or processed. This adds complexity when data is handled across multiple jurisdictions: the same piece of data might be collected in one country, stored in another, and processed in a third—making it subject to the laws of each location. Organizations that operate globally must understand which legal jurisdictions apply to their data and how those jurisdictions' laws interact.
+- **Data sovereignty**: Data sovereignty refers to the concept that data is subject to the laws and regulations of the country/region where it's physically collected, held, or processed. This adds complexity when data is handled across multiple jurisdictions: the same piece of data might be collected in one country/region, stored in another, and processed in a third—making it subject to the laws of each location. Organizations that operate globally must understand which legal jurisdictions apply to their data and how those jurisdictions' laws interact.
 
 - **Data privacy**: Privacy refers to the appropriate handling of personal data—any information that relates to an identified or identifiable individual. This includes obvious personal information such as names, email addresses, and phone numbers, but also information that can be indirectly linked back to a person, such as location history or browsing data. Privacy laws and regulations require organizations to be transparent about what personal data they collect and how it's used, obtain appropriate consent before collecting certain categories of data, give individuals rights over their data—such as the right to access, correct, or delete it—and protect personal data against unauthorized access or exposure. Organizations are subject to privacy laws wherever they operate and wherever their customers are located. Because different jurisdictions have different requirements, organizations with global operations often need to navigate multiple overlapping privacy regulations simultaneously.
 
