It’s been a long time coming, but the EU General Data Protection Regulation (GDPR) finally comes into effect in May 2018. As such, many firms in the UK are now in full-on panic mode: have they correctly understood their requirements under the new rules, or will they be exposed to fines of up to €20 million - or 4% of global turnover - in one months’ time?

The truth is, there’s still a lot of uncertainty around GDPR and its implications for the way we do business today. This is partly because we live in an age where the ownership and control of IT infrastructure is often outsourced to third parties via cloud and colocation services, so it’s not necessarily obvious who should be shouldering the burden of compliance when it comes to handling the personal information of EU citizens.

Read more: Is your cloud or colocation provider GDPR-compliant?