Last year the EU heralded two new laws which rattled the regulatory waters and legal landscapes of a number of EU Member States, while generating significant press coverage across the globe. Initially, the revised Payments Services Directive (Directive 2015/2366 or PSD II) came into force in January, which was then followed by the general data protection regulation (Regulation 2016/679 or GDPR) which kicked into force around the end of May.