Want to look like a lion? They scan your face, use their algorithm to stretch the lion face on you, and because you're moving, it's a compute intense thing so done more in the cloud than on-device.
But as it's off device biometrics, it falls into the Illinois BIPA category (only focused biometrics law in the USA) so they collect consent up front.
Let's not forget OFAC lists, anti money laundering laws and FATCA requirements. These are driven primarily from the USA but the penalties are felt globally. Your employer likely has to get all your details to ensure you can get legally paid, otherwise they may be severely penalized.
Yes, if the organizations are targeting consumers in the EEA (EU + a few extra countries). It's part of the reason why these companies are required to have an Article 27 EU Rep resident in the EU: to interact with regulators.
When any other country has a law like that, they are obviously the bad guys.