The looming May 25, 2018, effective date of the European Union’s General Data Protection Regulation (GDPR) carries implications beyond just the E.U. for both so-called “controllers,” the entities that make decisions relating to personal data, and “processors,” the third parties that act on the instructions of a controller when managing the use of that personal data. During a recent Bristows webinar, “The Future of Third Party Compliance in Europe,” Robert Bond, a partner at Bristows, and Allan Matheson, CEO of Blue Umbrella, a compliance research firm, spoke about how GDPR and other laws are impacting third-party monitoring and how technology can be used to make that monitoring more effective. See our series on third-party contracts, “A Guide to Anti-Corruption Representations in Third-Party Contracts: Nine Clauses to Include (Part One of Two)” (Jun. 25, 2014); “Clauses for High-Risk Situations and Enforcement Strategies (Part Two)” (Jul. 9, 2014).