What is GDPR?

The General Data Protection Regulation (GDPR) is a European privacy law that came into force on May 25, 2018. It came into being as a uniform regulation intended to strengthen and modernize data protection laws across all EU member states. GDPR aims to enhance individual data privacy rights in tandem with the EU’s understanding of privacy as a fundamental human right. 

GDPR regulates how organizations obtain, use, store, and share the personal data of individuals. The GDPR replaced the many data protection laws of EU member states that were implemented under the old data protection directive. It is the first comprehensive privacy regulation globally that attempts to regulate the collection and use of personal data by both public and the private sector.