3rd, A controller or processor not founded from the EU are going to be matter into the GDPR if it procedures the non-public facts of data subjects while in the EU and that processing is related to the “monitoring” in the EU of the “conduct” of information topics as their https://aramcocybersecuritysaudiarabia.blogspot.com/