Unlike a lot of compliance restrictions, SOC compliance is typically not mandatory to operate in a very supplied marketplace like PCI DSS compliance is for processing payment card information. Generally, businesses need a SOC audit when their consumers request 1. The GDPR safeguards private details regardless of the technologies useful https://www.nathanlabsadvisory.com/blog/nathan/key-components-of-a-successful-incident-response-strategy/
