What is the General Data Protection Regulation (GDPR)?
The European Union has enacted new legislation – the General Data Protection Regulation (GDPR). The new regulation was agreed to and adopted in 2016 and is scheduled to take effect on May 25th 2018. These new regulations will apply to the data of EU individuals, no matter where the data may be.
But I’m not in the EU!
GDPR is applicable to any organization that handles the data of EU individuals.
Anyone who communicates to or processes the data of EU natural persons must comply. From a practical standpoint, that means if you sell or market to EU residents, email them, or hold or process any data about EU residents you must comply.
GDPR applies to every organization that processes personal data about people in the EU.