3rd, a controller or processor not established inside the EU will probably be subject matter to the GDPR if it processes the non-public info of knowledge topics while in the EU Which processing is related to the “monitoring” inside the EU with the “actions” of information subjects as their habits https://mascomplianceinsingapore.blogspot.com/