Unlike Lots of compliance rules, SOC compliance is often not required to work in a very provided industry like PCI DSS compliance is for processing payment card info. Normally, providers need a SOC audit when their clients ask for one. Your business is service supplier centered outside the EU. It https://www.nathanlabsadvisory.com/eu-gdpr.html