The May 2018 deadline for the EU’s General Data Protection Regulation (GDPR) should have organizations scrambling to roll out GDPR-readiness programs. After all, the regulation applies to most organizations doing business in the EU, non-compliance can result in severe fines, and getting ready for compliance will likely take significant time and effort. However, according to a recent global CGOC survey of compliance officers only 6 percent of respondents felt their organizations were ready to comply with the regulation. The survey also reveals that these organizations face many other data protection and management challenges. This article discusses the findings of the survey.