Nowadays, almost all companies are dealing with personal data, whether from their customers, partners, patients or their own employees. Since the implementation of the European Data Protection Regulations in 2018, companies are responsible to comply with the GDPR. From now on they must adapt the way they handle user’s personal information to that regulations. If the company fails in adjusting its policies it may incur in heavy penalties.