SOC 2 compliance is all about data privacy. Yes, it is strictly for EU markets, but applies to all businesses targeted EU customers irrespective of their physical positions. In this situation, the laws also apply to US businesses. At the core of data laws are the Trust Services Criteria (TSC). https://soc2aicpa.widblog.com/94824617/understanding-soc-2-trust-services-criteria