The General Data Protection Regulation is now here, and financial institutions need to ensure they are fully prepared if they are to avoid major fines. Adam Mertz gives his checklist for compliance.