European Union General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years.

After four years of preparation and debate the GDPR was finally approved by the EU Parliament on 14 April 2016. It will enter in force 20 days after its publication in the EU Official Journal and will be directly applicable in all member states two years after this date. Enforcement date: 25 May 2018 - at which time those organizations in non-compliance will face heavy fines.

The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organizations across the region approach data privacy. The key articles of the GDPR, as well as information on its business impact, can be found on the EUGDPR website. Please see https://www.eugdpr.org for further information.
EUGDPR Website 12/7/2017