The General Data Protection Regulations (GDPR) will take effect on May 25, 2018, applying to all EU and foreign organizations handling personal data of EU residents. To meet GDPR requirements, companies must be able to track the movement of personal data across their enterprise applications, provide transparent tracking of personal information, and prove compliance with regulations. This is a challenging task due to the large amount of data involved, as personal data resides in many applications that span servers, data centers, geographies, internal networks, and cloud service providers. Graph database technology offers a natural approach to managing all of this data and its connections, enabling companies to build a GDPR compliance solution that meets these requirements.