OneTrust Certified Privacy Professional Practice Exam 2024 - Free Privacy Professional Practice Questions and Study Guide

The correct answer is True. According to the GDPR (General Data Protection Regulation), consent must be as easy to withdraw as it is to give in order to be considered valid. This requirement is aimed at ensuring that individuals have control over their personal data and can easily revoke their consent to data processing if they choose to do so. This aligns with the principles of transparency and user control that are at the core of data protection regulations like the GDPR.