Not like several compliance rules, SOC compliance is typically not mandatory to work inside of a given field like PCI DSS compliance is for processing payment card data. In general, providers require a SOC audit when their buyers request just one. The GDPR safeguards particular data regardless of the technologies https://www.nathanlabsadvisory.com/nydfs-cybersecurity-risk-assessment.html
