On May 25th, 2018, the European General Data Protection Regulation (GDPR) came into effect. The objective of this regulation is to give individuals more control over how their personal data is collected, processed, and shared.
The General Data Protection Regulation (GDPR) is a set of rules that govern all forms of personal data that are held by an organization. GDPR gives every individual ownership of their personal data, and, on the organization’s side, introduces accountability at all stages of data processing and storage. GDPR achieves this by providing several rights to individuals and putting corresponding obligations on the organizations that process personal data.
GDPR harmonizes data privacy laws across the EU, and it complements existing national CCTV and video surveillance regulations.
GDPR provides a structure for businesses that clarifies their roles and responsibilities and gives individuals the opportunity to control how their personal data is used.
Under GDPR, any company that have an establishment in the EU or that offer goods or services to individuals in the EU when processing personal data of EU data subjects will need to meet new requirements.