You may have heard of a new law called GDPR, of the General Data Proection Regulation. This law was developed by the Europian Union and takes effect May 25th, 2018. It applies to any organization that handles the personal information of any resident in the European Union (EU), regardless of where in the world that organization is located. GDPR requires organizations to maintain the privacy and security of any EU resident's personal information. To ensure compliance with GDPR, some key principles need to be understood and implemented.