As a new year begins and the EU General Data Protection Regulation (GDPR) moves into its fourth year, developments in the privacy sphere both in Europe and beyond show no sign of slowing down. The last year has seen several significant developments set in motion across Europe and internationally that will provide for a busy year ahead from a data protection perspective for financial services firms, as discussed further below.