The General Data Protection Regulation (GDPR) is a new framework for data protection within the EU, set to take effect on May 25, 2018. It focuses on handling and designing principles of data, with implications on enterprises' data strategy as they strive towards GDPR compliance. With digitization generating massive amounts of data, businesses are increasingly making "data-driven decisions" for improved productivity. However, this also raises concerns about privacy and customer data protection. The GDPR aims to address these issues while allowing companies to continue leveraging the power of data analysis.