It problems recommendations regarding how to interpret Main principles on the GDPR and may concern binding conclusions addressed to the information protection authorities on dispute in concrete scenarios pertaining to cross-border processing. The distinction between the different sorts of SOC audits lies in the scope and period on the assessment: https://www.nathanlabsadvisory.com/blog/nathan/why-penetration-testing-is-essential-for-cyber-security-in-the-uae/
