You need to comply with the General Data Protection Requirements (GDPR) by 25 May 2018
Are you running a Business in the EU?
Based outside of Europe but are offering goods or services (paid or unpaid) to EU data subjects?
Fines for non-compliance: A fine of up to €20,000,000, or in the case of an “undertaking”, up to 4% of the total worldwide annual turnover (not profit) of the preceding financial year, whichever is higher, for certain defined infringements of the GDPR
This is not a box-ticking exercise. The GDPR creates a framework that can be used to breed an entity-wide culture of privacy!