a company or entity which processes personal data as part of the activities of one of its branches established in the EU, regardless of where the data is processed; or
a company established outside the EU and is offering goods/services (paid or for free) or is monitoring the behaviour of individuals in the EU.
Yes, it applies to non-EU citizens under certain circumstances. The regulation is designed to protect the personal data of individuals within the EU, but its scope extends beyond EU borders. It applies to any organisation, anywhere in the world, that processes the personal data of individuals in the EU. This includes non-EU citizens who are in the EU at the time of data collection.
only location important for gdpr. but honest, bet they process all data the same. no idea if legally different, not lawyer.
if mean Artzschweigepflicht, that specific between you and doctor. was example for health data taken serious in germany.
https://commission.europa.eu/law/law-topic/data-protection/reform/rules-business-and-organisations/application-regulation/who-does-data-protection-law-apply_en
company definitely fit 1.
https://insight.thomsonreuters.com/mena/legal/posts/gdpr-breaking-down-the-general-data-protection-regulation
only location important for gdpr. but honest, bet they process all data the same. no idea if legally different, not lawyer.
if mean Artzschweigepflicht, that specific between you and doctor. was example for health data taken serious in germany.