General Data Protection Regulation (GDPR) is a new data protection and privacy regulation for all individuals within the European Union (EU). It came into force on May 25th 2018.
GDPR, which effectively replaces the Data Protection Act 1998, was introduced to update EU citizens’ control about what information is held and shared about them. For example, under GDPR, the definition of personal data has been expanded to encompass online identifiers such as cookies or GUID (globally unique identifier) and location data.
Any company dealing with EU businesses’, residents’, or citizens’ data has to comply with the GDPR.