Skip to main content

Adopted in 2016 and applicable since May 2018, the GDPR is a European Union regulation that seeks to give people greater control over their personal data and homogenize data protection laws in all Member States. It introduces key principles such as transparency, purpose limitation, data minimization and clear and affirmative consent.

It also establishes important rights for citizens, such as the right of access, rectification, portability and oblivion. Organizations that process data of EU citizens must comply with this regulation, regardless of their geographical location, which has led to a global reconsideration of data management practices.