3rd, a controller or processor not founded during the EU are going to be matter for the GDPR if it procedures the personal facts of data subjects in the EU and that processing is related to the “monitoring” from the EU from the “habits” of knowledge subjects as their conduct https://socialmediastore.net/story18108781/cybersecurity-consulting-services-in-saudi-arabia