GDPR General Data Protection Regulation
The General Data Protection Regulation (“GDPR”) is the new legal framework that will come into effect on the 25th of May 2018 in the European Union (“EU”). EU Regulations have direct effect in all EU Member States, meaning the GDPR will take precedence over any national laws.
Most businesses collect personal data from the minute they interact with an individual, and in some cases might not even be aware they’ve done so.
The key areas of the GDPR, with particular reference to the EU Directive 95/46 data protection directive.
- Individual rights—and informing people about them
- Right to move or transfer personal data (data portability)
- Proof of compliance
- Privacy from start to finish
- Mandatory breach reporting
- DataProtection Officer (DPO)