How to implement privacy-by-design requirements for GDPR

Effective May 2018, organizations doing business in the EU will face strict rules on the collection, use, storage, transmission or deletion of personal data.