Contrary to lots of compliance restrictions, SOC compliance is typically not necessary to function in a very specified industry like PCI DSS compliance is for processing payment card details. In general, providers need a SOC audit when their consumers request a single. Share your views on EU legislation and policies, https://www.nathanlabsadvisory.com/blog/tag/regulatory-requirements/
