General Data Protection Regulation (GDPR)

Regulation (EU) 2016/679, the European Union’s (“EU”) new General Data Protection Regulation (“GDPR”), regulates the processing by an individual, a company or an organisation of personal data relating to individuals in the EU.

The regulation is an essential step to strengthen individuals’ fundamental rights in the digital age and to facilitate business by clarifying rules for companies and public bodies in the digital single market. The regulation entered into force on 24 May 2016 and has applied since 25 May 2018.