You need to think about all of the information that your company collects. You then need to put processes in place to handle the information correctly. These processes need to be in line with the General Data Protection Regulation (GDPR) enforceable by 25th May 2018.
If you’re still hoping that you can avoid dealing with any of this, you’ll need to consider hiring a Data Protection Officer or appointing a current employee as your Data Protection Officer.
Finally, WooCommerce has provided six very good articles that cover the latest changes to the General Data Protection Regulation (GDPR). If you’re still confused by it all, we’d recommend reading “Web Privacy And WordPress GDPR Compliance – The Definitive Guide“.