3rd, a controller or processor not founded in the EU are going to be subject to the GDPR if it processes the private information of data subjects from the EU Which processing is relevant to the “monitoring” from the EU on the “conduct” of data subjects as their behavior requires https://bookmarkstumble.com/story19216955/cybersecurity-consulting-services-in-saudi-arabia