GDPR, HIPAA, PCI-DSS, etc. define the types of personal data that may be collected and recorded, as well as where this data can be sent. To ensure compliance, networking and security teams need to understand which countries’ data will be traversing the network, what paths the data will take, where the data will be stored, and all the locations that will have monitoring tools and security applications deployed.