The Information controller decides the applications for which along with the usually means by which private details is processed. The difference between the different sorts of SOC audits lies from the scope and length in the evaluation: A SOC 2 examination can be a report on controls in a service https://www.nathanlabsadvisory.com/blog/tag/gdpr-compliance/