GDPR (The General Data Protection Regulation) goes into effect across the European Union on May 25, 2018. If your marketing and eCommerce operations reach a European audience, strict compliance with GDPR is mandatory. The penalty for failing to comply can be a fine up to 4 percent of your global annual revenue (or up to €20 million)!
In short, if you process data about individuals in the context of selling goods or services to European citizens in any EU country, then you will need to comply with GDPR.
But what exactly does GDPR require, and how must you comply?