Data privacy and protection have seen immense interest and awareness in the last couple of years.  Today, the personal data of consumers, cross border data flows, online transactions and real-time data exchange are just some areas under close scrutiny. Governments across nations have already taken steps and are trying their best to bring in regulations as a response to the chaos around “data”. EU’s General Data Protection Regulation (GDPR) applicable wef. 25 May 2018 has been one such legislation, a pioneer in many ways but still has companies struggling in to protect their data, and keep the rights and interests of their customers (termed as data subjects) in consideration.