Considering the cloud for GDPR compliance. On 25 May 2018 the General Data Protection Regulation will come into force, bringing significant changes to previous data privacy legislation. As part of their compliance journey many organisations are currently considering their IT architecture, including comparison of their existing on- premise solutions against cloud services which could provide a GDPR- ready architecture to manage the lifecycle of their data. However, organisations may still have concerns around handing their data over to a third party to store in the cloud. This paper seeks to explore these competing views of cloud services and how cloud services could assist in GDPR compliance.