GDPR constitutes the protection of personal data of employees, customers and others. Considering that personal data represents critical and sensitive information that all organizations should protect, GDPR will help put in place appropriate procedures and controls to prevent Information Security breaches.