The General Data Protection Regulation (GDPR) approved by the European Parliament in April 2016 and will come into effect on 25 May 2018. This regulation is the biggest and most important European legislation regarding privacy and data protection in the last two decades.
GDPR applies to any business or organization that processes or stores the personal data of European citizens, regardless from which country they operate. Τhe aim of the GDPR is to give to all European citizens much greater control over their personal information and to force companies and organizations to take more seriously the handling and the protection of their client’s personal data. The fines for non-compliance can reach up to €20 million or 4% of a company’s turnover, which means GDPR is not to be taken lightly.
An individual’s rights under the GDPR
The General Data Protection Regulation (GDPR) seeks to establish eight rights for individuals regarding the protection of their personal data.