The Regulation affords more data rights to individuals and requires organizations to develop defined policies, procedures and to adopt relevant technical and organizational controls to protect personal data.The GDPR applies to two types of users, of which we will undoubtedly all fall; Controllers and Processors. Briefly put; the controller determin