General Data Protection Regulation (GDPR)

What is General Data Protection Regulation (GDPR)?

The General Data Protection Regulation (GDPR) is a legal framework that sets new guidelines for the collection and processing of personal information of individuals within the European Union (EU).

The GDPR lays out the principles for data management and the rights of the individual, while also imposing fines that can be revenue-based. The General Data Protection Regulation applies to all organizations that deal with EU citizen data, making it a critical regulation for corporate compliance officers at banks, insurers, and other financial organizations.

On May 25, 2018 GDPR came into full-effect across the EU. 

Back to Glossary