3rd, a controller or processor not set up while in the EU will probably be subject matter to your GDPR if it procedures the private facts of information subjects from the EU Which processing is associated with the “checking” while in the EU in the “conduct” of data topics as https://bookmark-search.com/story17588803/cyber-security-consulting-in-saudi-arabia
