The European Union’s General Data Protection Regulation (GDPR) is a regulation concerning the data protection rights of individuals. It came into effect on the 25th of May 2018 and is enforceable to any organisation globally that holds information relating to EU citizens.
The GDPR addresses organisations policies and procedures relating to personal data of individuals, which will greatly impact how this data is collected and managed. It will introduce obligations in relation to data accountability and transparency, as well as providing individuals with stronger rights regarding their personal data.
Outlined below are the main areas of change that will be introduced through the GDPR: