3rd, a controller or processor not proven during the EU will likely be matter for the GDPR if it procedures the non-public data of knowledge topics inside the EU and that processing is connected to the “checking” during the EU of the “behavior” of knowledge topics as their habits usually https://socialistener.com/story3033007/cyber-security-services-in-usa