GDPR is the standardized data protection law for all individuals within the European Union which placed stricter rules for the control and processing of PII. This places the accountability onto both the Controller and the Processor of sensitive data. What is the difference between the GDPR data controller vs data processor?