The European Union’s General Data Protection Regulation (GDPR) compliance deadline is May 25, 2018, you’ve only got a few months to decide what, exactly, GDPR means for your company, your customers, and your employees.

The main tenets of GDPR – data portability, breach notification, data protection by design and default, data/storage minimization, opt-in consent, right-to-erasure, appropriate technical measures, evidence of compliance – are amazing codification of laws that every service provider and vendor on this planet – that may or may not be impacted by the regulatory framework itself – would do well to make an integral part of their DNA and offering – for their existence and their customers’ well-being.

Below are 7 sections explained in greater detail:

1. Data portability
2. Data protection by design and default
3. Data/storage minimization
4. Opt-in consent
5. Right to erasure
6. Appropriate technical measures
7. Evidence of compliance