New data regulations from the European Union require organizational attention, and three key steps can help navigate the data privacy landscape.