 GDPR is an opportunity. It requires companies to establish robust privacy programs and the robust privacy program can actually demonstrate the value that a company puts in complying with data privacy laws and thereby build customer trust. I think the biggest myth of GDPR is that preparation for GDPR is point-and-time activity ending with the enforcement date 25 May 2018. I think the biggest challenge for companies implementing the GDPR is complying with the strict timeline for data breach notifications, the 72 hours. According to recently published cyber security studies, among the leading companies in the world are the United States and in Europe, Estonia, France and Norway. And I believe what differentiates Germany is that we don't have enough broad awareness campaigns educating the broader society with regard to cyber security threats and potential mitigations. I think for us personally as data subjects we will have additional rights in the future with the GDPR and I also believe that we will have to spend more time managing our individual privacy preferences.