GDPR / General Data Protection Regulation

The General Data Protection Regulation is an EU regulation on data protection and data privacy that is applicable to all data processing done by organizations and institutions operating in the EU, and outside of the EU if they are processing personal information of the citizens of the European Union or European Economic Area (EEA).

GDPR represents, to this day, the most comprehensive legislation regarding privacy and data protection granting the EU citizens with rights to protect their personal information and requiring complete transparency from the data controllers. It was implemented on 25 May 2018.