The EU-wide implementation of the stringent General Data Protection Regulation (GDPR) will come into effect next May. Why should retailers care and what are the silver linings?