General Data Protection Regulation (GDPR)

What is it?

The GDPR is a regulation that aims to protect the privacy and data of every citizen within the European Union. It will also affect companies outside of the European Union, that want to use EU citizens’ data.

When does it come into effect?

The GDPR has already come into effect and has been implemented on May 25th 2018.


Seven Ways your Business will be Impacted by the GDPR


“Personal” Data

Personal data being a very broad statement, overarches everything from one’s professional, public, and private life. Everything from social media posts, images, addresses, and more are considered personal data, and will be protected under this act.


Whole of EU

All of the European Union states will be holding operations under a single rulebook, and be united with the Supervisory Authorities from each state.

Questioning Powers

The citizens within the European Union will be able to ask more and more questions regarding the usage of their personal data from companies. Both a companies’ data controller and data processor could be affected by this change.


Retooling Systems

In order to keep a European citizens’ data private, companies may need to upgrade their systems to meet requirements for protecting these citizens data and privacy. One approach could be Privacy by Design, which scrambles the identity information as soon as it is input into a system.



Larger companies may find themselves needing to hire a Data Protection Officer. Data Protection Officers ensure that GDPR regulations are being upheld within a company, and may have meetings with DPAs (Data Protection Authorities).


Data Breaches

Any breaches in a companies’ data will need to be reported right away, and may have to be reported to the individuals involved in the incident.


Complete Control

European Union citizens hold the right to be forgotten, and can issue a request for their personal data to be erased from the companies’ database.



demotodaylinkedin logo minitwitter logo minii