The General Data Protection Regulation (“GDPR”) is a European regulation applicable since May 25, 2018. It is aimed at strengthening the protection of individuals’ personal information by providing them with more control over their personal data and making organisations processing these data more accountable than under the previous legal regime (i.e. the directive 95/46/EC).
The purpose of this article is to provide an overview of what the GDPR consists of and what the main changes are compared to the previous applicable legislation.