3rd, a controller or processor not established while in the EU are going to be issue towards the GDPR if it processes the non-public information of data topics in the EU Which processing is connected with the “monitoring” within the EU from the “habits” of data subjects as their behavior https://livebackpage.com/story2965266/cyber-security-consulting-in-saudi-arabia