The EU General Data Protection Regulation.
The GDPR is the most important change in data privacy regulation in two decades. This resource explains its key elements — and how it reshapes the way organisations approach data privacy.
What is the GDPR?
The EU General Data Protection Regulation (GDPR) replaced the Data Protection Directive 95/46/EC. It was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens' data privacy, and to reshape the way organisations across the region approach data privacy.
Approved by the EU Parliament in April 2016, it became enforceable on 25 May 2018, at which point organisations in non-compliance faced heavy fines. The key articles of the GDPR, and information on its business impact, are explained throughout this resource.
Browse the GDPR
Everything from the headline changes to a summary of all 99 articles.
The information contained within this resource does in no way constitute legal advice. Any person who intends to rely upon or use this information is solely responsible for independently verifying it and obtaining independent expert advice if required.
Need help with compliance?
Our team advises on data-protection compliance, cross-border transfers, privacy policies and breach response.