This article reviews and advances existing relevant literature concerning online data privacy. Using data from Adobe/Edelman Berland, Econsultancy /Demographics and Technology Adoption report, Flash Eurobarometer, HubSpot, MarketingCharts, Pew Research Center, Spiceworks, Statista, Talend, and TrustArc, we performed analyses and made estimates regarding actions organizations aim to take to lay the groundwork for the General Data Protection Regulation (GDPR), the proportion of executives whose corporations have taken diverse decisions in preparation for GDPR, enhancements required in organizations in the wake of GDPR compliance, customer positions to online data harvesting routines, the link between customer trustworthiness and retail data infringements, the percentage of grown-ups who indicate varying degrees of trust that the records of their operations preserved by various companies will still be private and secure, and the degree of accountability for protecting a person’s online privacy. Empirical and secondary data are used to support the claim that the difficult tasks for persons to have relevant management over personal data are reflected in the GDPR that is a significantly intricate piece of law taking into account risk-based assessment and analysis by the data controller. To a certain extent, data subjects may be conferred a right to be notified about the presence of automated decision-making and system performance.