Out of the following, which is NOT the role of data owner as it pertains to data privacy?
a. The data owner will define data classification determining which security controls should be in place.
b. Data owner will also approve any privacy disclosure activities.
c. Data owner will approve access request to the data.
d. Based on the principle of least access privilege, the data owner will perform identity and access life-cycle functions.