The EU Parliament will approve the new General Data Protection Regulation (GDPR) in 2016. The maximum fine for a violation of the law will be up to 4% of a company's global turnover. Meanwhile, customers are changing their behavior due to growing privacy concerns and their greater desire to protect their personal data. S&R professionals must plan and prepare to execute their data protection strategy now; this report will propose a definition of data protection that works throughout the ecosystem and will help S&R pros focus on the core attributes of their strategy.