Third, A controller or processor not proven within the EU will probably be subject to your GDPR if it procedures the non-public info of information subjects during the EU Which processing is related to the “monitoring” while in the EU of the “behavior” of information topics as their conduct normally https://aramcocybersecuritysaudiarabia.blogspot.com/