Upon getting recognized which assessment you have to total, the next action is usually to perform the evaluation, total the appropriate SAQ or ROC documentation, and submit it to Stripe for evaluation. The GDPR guards private data regardless of the technological know-how useful for processing that data. It's technology neutral https://www.nathanlabsadvisory.com/blog/nathan/key-components-of-a-successful-incident-response-strategy/
