Third, a controller or processor not proven inside the EU might be subject matter for the GDPR if it processes the private facts of knowledge topics during the EU and that processing is associated with the “checking” during the EU from the “conduct” of information topics as their actions can https://sites.google.com/view/gdpr-compliance-in-usa/