The GDPR imposes numerous obligations on controllers of EU private knowledge. Many of these obligations undoubtedly are a continuation of All those founded by the 1995 EU Directive, but Many others are both new or expanded. Protect cardholder information. Companies adhering to PCI DSS will have to shield cardholder information https://www.evernote.com/shard/s731/sh/5cc817ce-59b8-8a6b-3237-38576d270cc0/YIhH1sGd22Rt4ZXdrTLADXx5Ax0vCrXYfCaRFwzxMVpaJiWpdW8bdQczUg