General Data Protection Regulation

What is the General Data Protection Regulation?

Definition of the General Data Protection Regulation (GDPR):  

In very simple terms, the General Data Protection Regulation aims to give increased powers to data subjects and increases fines for data processors and controllers if they fail to be compliant.

In light of an increasing number of data hacks in recent years, GDPR will allow data subjects to take control of who has their data, what they can do with it, and more.

The legislation has raised wide speculation in industries such as marketing, where there is still great uncertainty over how personal data can be legitimately used to target consumers.

GDPR will be enforced as of May 2018. It comes into force for any European business and any business outside of the EU using European data subjects. Companies have been preparing for GDPR in the run-up to this date, since the announcement in April 2016.

Abbreviations: GDPR

Related content:

Related resources: