The General Data Protection Regulation (GDPR) is the new data protection law in the European Union. It is designed to give people more control over their personal data, imposing new obligations on organizations that collect, manipulate or analyze data, including organizations outside the EU.
GDPR entered into force on May 25, 2018.